manualshive.com logo in svg

HP bh5700, User Manual

The HP bh5700 User Manual is a comprehensive guide that provides detailed instructions and information to maximize the potential of your HP bh5700 product. Download the manual for free from our website to access valuable tips and tricks, ensuring a seamless user experience with your device.

Share
Download
background image

On the other hand, in the following sequence of rules, the position of the rule that drops SYN 
packets is important.  Since the set of fields it examines is not a subset of the fields examined by 
the ACCEPT rules, and visa versa, the ordering rule given above does not apply. In this case, the 
order it is applied will be the same as its position in the FORWARD chain, and all packets which 
are TCP SYN packets from  

zhp5

 for 

zhp3

 will be DROPPED, even if they also match one of 

the ACCEPT rules.

iptables -a FORWARD -i zhp5 -o zhp3 -j DROP

iptables -a FORWARD -i zhp5 -o zhp3 -p tcp --sport smtp -j 
ACCEPT

iptables -a FORWARD -i zhp5 -o zhp3 -p udp --sport domain -j 

ACCEPT

iptables -a FORWARD -i zhp5 -o zhp3 -p tcp --sport domain -j 
ACCEPT

iptables -a FORWARD -i zhp5 -o zhp3 -p tcp --sport www -j 

ACCEPT

iptables -a FORWARD -i zhp5 -o zhp3 -p tcp --sport 23 -j 
ACCEPT # rsync

iptables -a FORWARD -i zhp5 -o zhp3 -p tcp --syn -j DROP

iptables and filtering

iptables

 is a firewall management user-space utility used in conjunction with the Linux 2.4 

kernels, and takes advantage of the netfilter 2.4 kernel code. 

iptables

 is extended with a few 

more targets to support the hardware filtering functionality used in the chips on the Ethernet
Switch Blade (fabric board). Generally, all of the 

iptables

 functionality is usable with a few 

minor extensions.

A more detailed source on 

iptables

 can be found at:

http://www.netfilter.org/

Almost all the contents described here are derived from there.

There are also many tutorials and 

iptables

 manipulation tools, both graphical and command 

line. This is expressive of the Open Architect concept. A good place to start is:

http://freshmeat.net/search/?q=iptables

Introduction

Firewall rules are stored in tables. These tables are sometimes also known as 

firewall chains

 or 

just 

chains

. Tables normally store rules for what are known as 

hooks

, which can be looked as 

packet-path junctions. There are five defined hooks: PRE-ROUTE, POST-ROUTE, INPUT, 
OUTPUT and FORWARDING. The example below illustrates the default chains on boot up.

Ethernet Switch Blade User's Guide

release  3.2.2j

page 60

Downloaded from 

www.Manualslib.com

 

manuals search engine

 

Summary of Contents for bh5700

Page 1: ...HP bh5700 ATCA 14 Slot Blade Server Ethernet Switch Blade First Edition Manufacturing Part Number AD171 9603A June 2006 Downloaded from www Manualslib com manuals search engine ...

Page 2: ...Ethernet Switch Blade User s Guide release 3 2 2j page ii Downloaded from www Manualslib com manuals search engine ...

Page 3: ...s no liability whatsoever and Intel disclaims any express or implied warranty relating to sale and or use of Intel products including liability or warranties relating to fitness for a particular purpose merchantability or infringement of any patent copyright or other intellectual property right Intel products are not intended for use in medical life saving or life sustaining applications Intel may...

Page 4: ...his manual includes everything you need to begin using the HP Ethernet Switch Blade with OpenArchitect software Release 3 2 2j Ethernet Switch Blade User s Guide release 3 2 2j page iv Downloaded from www Manualslib com manuals search engine ...

Page 5: ...pter 3 High Availability Networking 27 Surviving Partner 27 VRRP 28 zlmd 28 Switch Replacement and Reconfiguration 29 zspconfig 29 Example HA Switch Configuration 30 Modifying zsp conf on the Base switch 31 Modifying zsp_vlan conf on the Fabric Switch 35 Configuring Surviving Partner 42 Central Authority 43 Chapter 4 Fabric Switch Configuration 46 Two switches two consoles 46 Connecting to the Fab...

Page 6: ... Filter Rules Specifications 62 Specifying Source and Destination IP Addresses 62 Specifying Protocol 62 Specifying an ICMP Message Type 62 Specifying TCP or UDP ports 63 Specifying TCP flags 63 Specifying an Interface 63 Filter Rule Targets 63 Supported Targets 63 Classical Targets 63 ZNYX Targets 63 ZACTION Examples 64 Extensions to the default matches 64 tc and zqosd 65 FIFO Queues pfifo and bf...

Page 7: ...ring 82 Link and LED Control 83 Link Event Monitoring 83 Chapter 6 Fabric Switch Maintenance 84 Overview of the OpenArchitect switch boot process 84 Saving Changes 86 Modifying Files and Updating the Switch 86 Recovering from a System Failure 86 System Boots with a Console Cable 86 Booting with the i option 87 System Hangs During Boot 88 Booting the Duplicate Flash Image 88 Upgrading the OpenArchi...

Page 8: ...ce in the ifconfig command line of the script 102 Layer 3 Routing Protocols with GateD 102 Using the Provided S55gatedRip1 Script 102 To Modify the GateD Scripts 104 Class of Service COS 105 Egress Queues 105 Ingress Classification 105 Marking and Re marking 106 Scheduling 106 zcos 106 zfilterd 106 ztmd 106 Running zfilterd 107 Restrictions on Implementation 107 Conflict Resolution 107 iptables an...

Page 9: ...dle Semantics 124 COPS Common Open Policy Service 124 Protocol Architecture 125 OpenArchitect PEP 126 Using pepd 126 Chapter 8 Base Switch Administration 128 Setting the Root Password 128 Adding Additional Users 128 Setting up a Default Route 129 Name Service Resolution 129 DHCP Client Configuration 129 DHCP Server Configuration 129 Network Time Protocol NTP Client Configuration 130 Network File S...

Page 10: ...b System 145 Ethernet Interfaces 145 Management Interfaces 145 Fabric Interface Hub System 146 Ethernet Interfaces 146 Management Interfaces 146 Connecting to the Base Interface 146 Base Interface Serial Port Connection 146 Base Interface Out of Band Ethernet Connection 147 Connecting to the Fabric Interface 148 Fabric Interface Serial Port Connection 148 Fabric Interface Out of Band Ethernet Conn...

Page 11: ...ooting 170 No Connection 170 Diminished Network Throughput 170 Connecting to Devices with Fixed Port Speeds 170 External Fault LED 170 Network Tests 171 Ping Test 171 Traceroute Test 172 Chapter 14 Isolating Hardware Failures 173 Hardware Subsystem 176 Testing the FlashROMs 177 Testing the Switch Fabric 178 Link Status for a single port 178 Link Status for a range of ports 178 Testing the onboard ...

Page 12: ... 219 zl2d 221 zl3d 223 zlc 225 zlmd 228 zlogrotate 230 zmirror 231 zmnt 233 zpeer 235 zqosd 238 zrc 240 zreg 241 zrld 243 zsnoopd 244 zspconfig 246 zstack 253 ztats 258 zsync 259 ztmd 261 brctl 8 263 Appendix B Base Switch Command Man Pages 266 vrrpconfig 267 vrrpd 269 zbootcfg 272 zconfig 274 zcos 282 zdog 286 zffpcounter 288 zfilterd 292 zflash 293 zgmrpd 295 Ethernet Switch Blade User s Guide r...

Page 13: ...esponses From PMC to BMC 352 Event Generator 353 IPMB Event message format 353 IPMI Event Message Definitions 353 Field Replaceable Unit Inventory Device 353 IPMB Override Local Status Event Data 3 for the IPMB link 354 Table of Figures Figure 1 1 Fabric Switch Elements 20 Figure 1 2 OpenArchitect Software Structure 22 Figure 2 1 LED Reference 25 Figure 3 1 Host HA Architecture 27 Figure 4 1 Fabri...

Page 14: ...of Tables Table 5 1 Supported MIBs 79 Table 5 2 Supported Traps 80 Table 5 3 Link and SNMP Status 81 Table 7 1 Port Path Cost 97 Table 7 2 Policing Actions 119 Table 7 3 U Match Selectors 120 Table 8 1 Supported MIBs 134 Table 8 2 Supported Traps 134 Table 8 3 Physical Link Status on Base Switch 135 Table 11 1 Troubleshooting States 152 Table 13 1 Ethernet Switch Blade Backplane Interfaces zre Por...

Page 15: ...Ethernet Switch Blade User s Guide release 3 2 2j page 15 Downloaded from www Manualslib com manuals search engine ...

Page 16: ...Ethernet Switch Blade User s Guide release 3 2 2j page 16 Downloaded from www Manualslib com manuals search engine ...

Page 17: ...o included with a user friendly interface OpenArchitect can be used with a variety of IP routing protocols As part of Advanced TCA the switch incorporates the PICMG 3 0 Intelligent Platform Management Interface IPMI standard for Field Replaceable Unit FRU management by the Shelf Manager High Performance Embedded Switching The Ethernet Switch Blade with OpenArchitect combines the performance of sil...

Page 18: ...igent Platform Management Interface IPMI standard is also supported IPMI uses message based interfaces that monitor the physical health characteristics of the Ethernet Switch Blade The switch provides operational status information to an IPMI management application End customers benefit with advanced notice of potential problems The Ethernet Switch Blade also implements the Media Dependent Interfa...

Page 19: ...t panel zre12 zre14 zre15 Fabric Switch Quick Reference slot zre numbers 3 zre0 3 4 zre4 7 5 zre8 11 6 zre12 15 7 zre16 19 8 zre24 27 9 zre28 29 10 zre30 31 11 zre32 33 12 zre34 35 13 zre36 37 14 zre38 zre39 15 zre40 41 16 zre42 43 Inter switch Link ISL zre51 Front panel zre20 23 Ethernet Switch Blade User s Guide release 3 2 2j page 19 Downloaded from www Manualslib com manuals search engine ...

Page 20: ...rfaces with the embedded processor and the switch fabric is at a higher performance level than a typical switch see Figure 1 1 Fabric Switch Elements The use of PCI creates a pipe of significant bandwidth between the processor and the switch fabric The embedded processors running Linux and the OpenArchitect processes control the flow of all traffic by maintaining the switch forwarding tables These...

Page 21: ...h the flexibility and control of the Linux software environment and the speed of dedicated switching silicon The OpenArchitect environment includes additional features For example installing the OpenArchitect switch gives you immediate implementation of Linux routing protocols Also you have complete support of routing table updates and a standardized method for configuration Finally you can quickl...

Page 22: ...ch Blade User s Guide release 3 2 2j page 22 Linux Application Level Software routed gated ZNYX RAIN Mgt API RMAPI OpenArchitect Libraries zlxlib and ztlib OpenArchitect Application Level Software i e zconfig zl3d zl2d zsync Linux Protocol Stack Linux Routing Tables Open Architect Driver PCI Bus Switch Fabric Linux Application Environment Linux Kernel Downloaded from www Manualslib com manuals sea...

Page 23: ...crossover cable is attached Console Port Cabling The switch console can be accessed via one RJ 45 10 100 service port located on the front panel of the Ethernet Switch Blade NOTE There are two switch portions that make up a Ethernet Switch Blade unit Each switch portion Base and fabric has its own console ports and requires its own console cable or OOB Ethernet cable The RS 232 configured RJ 45 co...

Page 24: ...g The front OOB port is eth0 and the rear not implemented with this release is eth1 LED Reference See Figure 2 1 for a schematic view of the front of a typical Ethernet Switch Blade board Note that there are out of band ports RS232 ports a USB port and 10 Gig egress ports not implemented in this release In band ports from the Base and fabric switches have LED status lights controlled from the LED ...

Page 25: ...Ethernet Switch Blade User s Guide release 3 2 2j page 25 Figure 2 1 LED Reference Downloaded from www Manualslib com manuals search engine ...

Page 26: ...Ethernet Switch Blade User s Guide release 3 2 2j page 26 Downloaded from www Manualslib com manuals search engine ...

Page 27: ...tch or switches to the host one link is maintained as the ACTIVE link and the other as STANDBY If the ACTIVE link were to go down the STANDBY becomes the new ACTIVE while presenting the same virtual interface to the host NOTE It is important that the bonding solution provide an active backup mode For the Linux bonding driver set mode 1 see the http sourceforge net projects bonding documentation fo...

Page 28: ...ude redundant connections from each host to each switch in the virtual router Combining the features of Surviving Partner on the switches and HA bonding drivers on the hosts allows implementation of this true HA configuration zlmd In addition to complete switch failover single link failure must be properly handled The Link Monitor Daemon zlmd monitors the link status of each port If a link goes do...

Page 29: ...ny different processes including vrrpd zlmd zlc and dhcpd The daemon processes run scripts to perform their actions Because these scripts are complex and inter dependent a configuration application called zspconfig is used to build them The basic steps to configuring Surviving Partner are 1 Determine your desired configuration 2 Modify the configuration file etc rcZ d surviving_partner zsp_DC conf...

Page 30: ...vrrpd changes state This script starts and stops dhcpd and toggles down RAINlink ports to force the RAINlink nodes to a new Master switch zlmd script Runtime script executed by zlmd when a link goes up or down This script modifies the priority of the vrrpd that in turn may cause the VRRP Master to move from one sibling switch to another After the scripts are created zspconfig may run the S70Surviv...

Page 31: ...e a backup copy of zsp conf and edit zsp conf cd etc rcZ d surviving_partner cp zsp conf zsp conf save vi zsp conf The first section uses zconfig to create the VLANs Many of these choices are determined by the physical configuration of the switch and ATCA backplane For instance the Base switch interconnect will always be port 23 and the shelf managers will be ports 22 and 13 zconfig zhp0 vlan100 z...

Page 32: ...ontain virtual addresses managed by VRRP And during a failover event the links are toggled down to force failover to the Master switch Route Ports connected to upstream routers VRRP does not manage virtual IP addresses for these links Routing protocols must be used to instruct up stream routers of a different path to get to the VRRP managed networks monitor_only Ports that are monitored but do not...

Page 33: ...Similar to VLAN failover the interconnect link will carry data traffic in this mode when ports failover failover_mode switch Next you can set VRRP_msg_rate and default priority VRRP_msg_rate is the time in milliseconds between vrrp message transmissions over the interconnect link The vrrp_def_priority is the default priority for both switches The value is set to 254 and should not require change v...

Page 34: ...re optional If you use the special failover modes vlan or port see above for details you can also specify an individual address to be the default master that is that a port or VLAN should run on a specific switch when the vrrp priorities are equal between switches NOTE VLAN or port mastering is not appropriate for switch mode and should not be attempted When addresses designated master failover th...

Page 35: ...p switch and run zspconfig u to get the appropriate configuration information from the Master zspconfig u zhp0 Modifying zsp_vlan conf on the Fabric Switch An example file for setting up zspconfig on a Ethernet Switch Blade Fabric board is etc rcZ d surviving_partner zsp_vlan conf Reference the descriptions in the previous section for descriptions of each configuration section Sample configuration...

Page 36: ...hp is to be managed by HA add a zconfig sibling_address and vrrp_virtual_address configuration line and define the port type as appropriate The interconnect port is needed in the VLANs connected to the RAINlink ports zconfig zhp0 vlan100 zre51 zconfig zhp1 vlan1 zre0 zre4 zre8 zre12 zre16 zre24 zre28 zre30 zre32 zre34 zre36 zre38 zre40 zre42 zre51 zconfig zhp2 vlan2 zre1 zre5 zre9 zre13 zre17 zre2...

Page 37: ...e order specified Each zconfig ured interface should have sibling addresses specified sibling_addresses zhp0 100 0 0 30 100 0 0 31 netmask 255 0 0 0 sibling_addresses zhp1 10 0 0 30 10 0 0 31 netmask 255 0 0 0 sibling_addresses zhp2 11 0 0 30 11 0 0 31 netmask 255 0 0 0 sibling_addresses zhp3 12 0 0 30 12 0 0 31 netmask 255 0 0 0 sibling_addresses zhp4 13 0 0 30 13 0 0 31 netmask 255 0 0 0 The vir...

Page 38: ...re on a port by port basis Note zhp and zre names cannot be mixed on the same line Shelf manager ports should be defined as monitor_only monitor_only ports are used in failover calculations but the failover mechanism is left to the software running on the shelf managers cards The use of the term crossconnect in these HA scripts is not the same as the use in ATCA shelf managers interconnect zhp0 RA...

Page 39: ...INlink_xmit_on_failover vrrp_mode block_crossconnect failover modes switch failover VLAN failover or port failover are mutually exlusive They describe what occurs if a port fails For switch failover if any port fails all functionality of the current switch is moved to the backup For vlan failover if a port fails in the vlan then all the ports that are a member of that VLAN are failed over For port...

Page 40: ...pplied vrrpd vrrp_msg_rate 100 In milliseconds vrrp_def_priority 254 start_script Allows the user to add files and scripts that are moved to the slave switches when they do a zspconfig u An example might be the gated configuration script S55 Absolute path names are required Multiple start_script commands can be used to move more than one file start_script etc rcZ d SxxScript start_script etc rcZ d...

Page 41: ...same mode must be set in both the base and fabric switches board_synchronization_mode basic vrrpd_script Allows the user to add scripts to be executed during vrrpd state transitions These scripts are run from the end of the etc rcZ d surviving_partner vrrpd script file The user provided script must be well behaved If it crashes or hangs or delays it will effect the SurvivingPartner performance The...

Page 42: ...tch and run zspconfig u to get the appropriate configuration information from the Master zspconfig u zhp0 Configuring Surviving Partner The S60SP_startup script is useful in setting up proper switch replacement By factory installing the S60SP_startup script in replacement switches the replacement switches will boot looking for a Master switch configuration The S60SP_startup works as follows It fir...

Page 43: ...ation file is dependent on the machine and operating system being used An example can be obtained from the Surviving Partner primary switch in the location etc rcZ d surviving_partner dhcpd conf This configuration will contain configuration for only one of the two Surviving Partner switches It must be edited For example subnet 100 0 0 0 netmask 255 0 0 0 option broadcast address 100 255 255 255 ho...

Page 44: ...onf on the Central Authority Move tftpboot zsp_DC conf 1 file on the primary created by zspconfig to tftpboot zsp secondary conf on the Central Authority Create dhclient conf files on the Surviving Partner switches Examples can be found in etc rcZ d surviving_partner dhclient conf As an example send dhcp client identifier ZNYX request vendor encapsulated options require vendor encapsulated options...

Page 45: ...cho y n zspconfig t 10 su zhp0 dev null 2 1 Can be modified to echo y n zspconfig c etc rcZ d surviving_partner dhclient new conf t 10 su zhp0 dev null 2 1 If you use S60SP_startup the etc rcZ d surviving_partner zsp primary conf file should not exist This way the S60SP_startup script will first look at the Central Authority If the Central Authority is down then it will use its current configurati...

Page 46: ... 43 Telnet to 10 0 0 43 telnet 10 0 0 43 After you are connected enter the login name root No password is required OpenArchitect login root ZX7100 OA release no OpenArchitect Configuration Procedure Layer 2 and Layer 3 switch configurations can be accomplished with a few simple commands Once you have configured your switch the commands should be placed into a start up configuration script Like mos...

Page 47: ...h etc rcZ d examples directory to help you configure the switch The default configuration for the switch is located in the script file etc rcZ d S50layer2 The following scripts are included each is examined in more detail later in the appropriate section describing common Layer 2 and Layer 3 configurations S50layer2 Script which sets up a basic Layer 2 switch All 48 ports are set up on one VLAN Th...

Page 48: ... fabric switch In the Figure 4 1 four VLANs for each fabric switch are used to organize traffic This is just one example of how a layer 2 switch could be configured with the fabric switch Tagging and Untagging VLANs The OpenArchitect switch is capable of switching VLAN tagged and untagged data packets VLAN tagged packets conform to the 802 1q specification and the packet header contains an additio...

Page 49: ...witch ports as well as a network interface Use ifconfig 1M on the network interface to bring up the VLAN group A startup script called etc rcZ d S50layer2 is executed at boot time creating one untagged VLAN zhp0 for all ports The ISL is assigned its own VLAN The interface to the host is then assigned the IP address of 10 0 0 43 to allow access to the switch The VLAN is assigned an IP address The S...

Page 50: ...led Bridge Protocol Data Units BPDUs for finding the shortest path between two networks and for eliminating loops from the topology If nodes attached to ports fail or are added or deleted the topology dynamically changes to accommodate the new configuration If your network topology is such that there is no real redundancy or chance for loops you do not need to turn on Spanning Tree zl2d is a shell...

Page 51: ...t has an associated cost that contributes to the total cost of the path to the Root Bridge when the port is the root port The smaller the cost the better the path The Ethernet Switch Blade uses the following IEEE 802 1D recommendations based on the connection speed of your port Port Path Cost Link Speed Recommended Value Recommended Range 10 Mb s 100 50 600 100 Mb s 19 10 60 1 Gb s 4 3 10 10 Gb s ...

Page 52: ... zre1 4 zconfig zre1 4 untag1 zconfig zhp1 vlan2 zre5 8 zconfig zre5 8 untag2 Now use ifconfig to assign each zhp interface an IP address ifconfig zhp0 10 0 0 1 ifconfig zhp1 11 0 0 1 At this point the Linux host has enough information to route between the networks of the directly attached interfaces 10 0 0 0 via zhp0 and 11 0 0 0 via zhp1 The next step is to enable the zl3d daemon to move that ro...

Page 53: ...n vlan1 zhp1 has zre1 on vlan2 Runs the Linux ifconfig 1M command for each interface to assign default IP addresses 10 0 0 43 10 0 47 43 sets the netmask and brings up the interfaces ifconfig zhp0 10 0 00 42 netmask 255 255 255 0 up ifconfig zhp1 10 0 01 42 netmask 255 255 255 0 up ifconfig zhp2 10 0 02 42 netmask 255 255 255 0 up ifconfig zhp21 10 0 45 42 netmask 255 255 255 0 up ifconfig zhp22 1...

Page 54: ...ols RIP 1 or RIP 2 and Open Shortest Path First OSPF protocols Once you ve configured your Layer2 and Layer3 devices start gated Using the S55gatedRip1 Script To use GateD protocol with the switch you need to copy two files into the same directory as your Layer 3 configuration file From the etc rcZ d examples folder copy the example script file and its corresponding GateD configuration file for ex...

Page 55: ... 255 255 255 0 define 10 0 14 42 netmask 255 255 255 0 define 10 0 15 42 netmask 255 255 255 0 Sets the RIP1 protocol to open rip1 yes Shuts off sending and receiving packets from all interfaces interface all noripin noripout Opens sending and receiving packets for selected interfaces interface 10 0 0 43 ripin ripout version 1 interface 10 0 1 43 ripin ripout version 1 interface 10 0 2 43 ripin ri...

Page 56: ...ipts Copy two GateD files the OpenArchitect S file and its corresponding conf file into the rcZ d directory that is S55gatedRip1 and gated conf rip1 Notice the files are placed in the same directory as the Layer 3 configuration file For RIP1 cp etc rcZ d examples S55gatedRip1 etc rcZ d cp etc rcZ d examples gated conf rip1 etc rcZ d Or for RIP2 cp etc rcZ d examples S55gatedRip2 etc rcZ d cp etc r...

Page 57: ...net Switch Blade fabric switch provides 1 to 8 COS queues per egress port and for packets destined to the CPU from the switching fabric By default a freshly booted OpenArchitect switch has a single queue per egress port and the CPU Ingress Classification Incoming packets are mapped to queues based on their priority tags The built in behavior of the Ethernet Switch Blade uses the 802 1p tag within ...

Page 58: ... priority traffic Weighted Round Robin WRR This algorithm is similar to Strict Priority scheduling but it provides fairness with quanta for each queue Each queue is assigned a number of packets known as weight that it is allowed to transmit before it yields to a lower priority queue Note that with WRR the priorities of the queues are dependent on the weights allocated A higher priority queue with ...

Page 59: ...t be previously defined using zconfig A restriction on the fields supported is the size of the IMASK table There are only 16 entries per port available which means only 16 combinations of fields can be used at any time Conflict Resolution There are differences from the expected behavior of implementing iptables in a host Although the rules are taken from the FORWARD and INPUT chains they are appli...

Page 60: ...y used in conjunction with the Linux 2 4 kernels and takes advantage of the netfilter 2 4 kernel code iptables is extended with a few more targets to support the hardware filtering functionality used in the chips on the Ethernet Switch Blade fabric board Generally all of the iptables functionality is usable with a few minor extensions A more detailed source on iptables can be found at http www net...

Page 61: ...ade product both the FORWARD chain hook and the INPUT chain hook packets destined for the CPU are implemented in hardware The rest of the hooks are in software in the Linux kernel An extension of the FORWARD hook also resides in software It is important to note that this is in sync with routing being implemented in hardware with software assist for exception handling Under general circumstances wh...

Page 62: ... a source port number 53 source port 53 then the target is to DROP j DROP More details on rule specifications follow Specifying Source and Destination IP Addresses Source s source or src and destination d destination or dst IP addresses can be specified in four ways The most common way is to use the full name such as localhost or www linuxhq com The second way is to specify the IP address such as ...

Page 63: ... an interface to match An interface is the physical device the packet came in on i or is going out on o You can use the ifconfig command to list the up interfaces for example working at the moment As a special case an interface name ending with a will match all interfaces whether they currently exist or not which begin with that string For example to specify a rule which matches all zhp interfaces...

Page 64: ...n can be used to specify ingress port or VLAN d specifies target IP address p specifies arp operation as request 1 or response 2 For arp response the o field can be used to specify the egress port ZACTION Examples Send all tcp packets arriving on zhp5 out port 2 iptables a FORWARD i zhp5 p tcp j ZACTION set eport 2 Send all tcp packets arriving on zhp5 to the CPU software iptables a FORWARD i zhp5...

Page 65: ...c command rather it explicitly mentions only features that are supported by OpenArchitect based switches The examples that follow assume that the switch is running the standard Layer 2 start up script etc rcZ d examples S50layer2 with all ports placed in a single VLAN zhp0 Note that this assumption is implied only by the fact that changes to zhp0 are shown to configure all ports Neither tc nor zqo...

Page 66: ... because the normal case is for packets to be switched in hardware For that reason zqosd must be used to shadow tc configuration into hardware Like zfilterd zqosd works with ztmd which provides the actual hardware interaction If ztmd is not already running start it then initiate the zqosd daemon with no parameters ztmd zqosd Now repeat the same tc command as before to install a packet limited FIFO...

Page 67: ...pline The final example in this document illustrates WRR A strict priority scheduler is a simpler case that can be constructed easily from this example Examine the existing CoS settings on the switch noting the number of queues per port queue sizes scheduling parameters and priority map Each of these values changes with this test The full set of commands to install four queues a priority map and w...

Page 68: ...0 has a weight of 1000 bytes Queue 1 has a weight of 2000 bytes Queue 2 has a weight of 4000 bytes Queue 3 has a weight of 6000 bytes The remaining commands each define a packet limited FIFO queue As with all previous tc examples these queues are created on device zhp0 However unlike all previous examples they are not created as root disciplines for the device Instead the parent option identifies ...

Page 69: ...tc filter add dev zhp0 protocol arp parent 100 0 u32 match u32 2 0xffff at 4 flowid 100 30 Combining Queuing Disciplines Any of the queue length limiting disciplines can be used with the bandwidth management queue disciplines by defining them with the handle of one of the classes as their parent For the htb queueing discipline each class has an explicit handle specified when it is defined For the ...

Page 70: ...nts Figure 4 3 Provides an illustration of the COPS Network Architecture A PDP contains all of the policy rulers for its associated PEPs A PDP typically stores rules in a data and is a dedicated server not a forwarding device A PEP is any network device that has to enforce policy decisions For example a switch that restricts network access or prioritizes traffic fits the definition of a Policy Enf...

Page 71: ... is that policy should be administratively defined at the PDP and pushed to the PEPs as needed OpenArchitect is a COPS PR client The most common use of COPS PR is for distributing Differentiated Services Diffserv policy Diffserv is concerned with such Quality of Service elements as queues and schedulers OpenArchitect PEP The OpenArchitect PEP implementation is known as pepd The pepd utility is bas...

Page 72: ... line with the f option pepd f full_path_and_filename A sample configuration file is listed below PDP address 10 0 0 11 PDP port 3288 PEPID some id Role If a zre1 zre2 zre3 zre4 where PDP address The IP address of the PDP Default is loopback 127 0 0 1 PDP port The destination port on which to open a COPS connection Default is 3288 PEPID The PEP Identifier Role If A mapping of roles to interfaces T...

Page 73: ...um of 5 maximum of 8 characters Please use a combination of upper and lower case letters and numbers Enter new password Re enter new password Password changed ZX7100 OA release no NOTE Even when just changing the password you need to save the file system overlay with the zsync command or you will lose your changes upon reboot Adding Additional Users Additional users can be added with the adduser c...

Page 74: ...in etc resolv conf DHCP Client Configuration A utility is included to dynamically determine the IP address of the OpenArchitect switch interfaces To set the the IP address dynamically execute the command dhclient zhp0 The default device name zhp0 works with the default configuration of the OpenArchitect switch and will attempt to obtain an IP address from the local DHCP server To use DHCP to set y...

Page 75: ...required if the OpenArchitect switch is operating behind some types of firewalls If you wish for ntpdate to set your date and time automatically each time you boot uncomment the example ntpdate command line in etc init d rcS by removing the sign ntpdate returns the Universal Time UTC formerly Greenwich Mean Time or GMT To display the localtime set the TZ variable to the appropriate name and the nu...

Page 76: ...s at boot time There is an example line included at the appropriate location in etc init d rcS Uncomment and alter the mount command included for your particular configuration NOTE A sleep of 5 seconds is included to allow time for the links to come up prior to attempting the mount sleep 5 mount 10 0 0 1 nfs t nfs o noac mnt NFS Server Configuration The switch also contains an NFS server so that y...

Page 77: ...ote host since root is not allowed ftp access See the earlier section in this chapter regarding how to add a user The ftp daemon is started by default If you wish to shutdown the ftp daemon comment out the betaftpd line in etc init d rcS Connecting to the Switch Using TFTP Trivial File Transfer Protocol or tftp is a very simple protocol used to transfer files It is designed to be small and easy to...

Page 78: ... TCP IP based Internets RFC 1227 SNMP MUX Protocol and MIB RFC 1493 Definitions of Managed Objects for Bridges obsoletes RFC 1286 RFC 1657 Definitions of Managed Objects for the Fourth Version of the Border Gateway Protocol BGP 4 using SMI V2 RFC 1724 RIP Version 2 MIB Extension obsoletes RFC 1389 RFC 1850 OSPF Version 2 Management Information Base obsoletes RFC 1253 which obsoletes RFC 1252 which...

Page 79: ...rfaces Group MIB obsoletes RFC 2233 which obsoletes RFC 1573 which obsoletes RFC1229 RFC 2932 IPv4 Multicast Routing MIB RFC 3165 Definitions of Managed Objects for the Delegation of Management Scripts RFC 3231 Definitions of Managed Objects for Scheduling Management Operations ZNYX Networks Private MIB Custom ZNYX MIB to support software and hardware features not covered by standard MIBs The Priv...

Page 80: ...s A zhp is an aggregate of its immediately contributing sub interfaces zre s and zrl s The ports that make up a trunk do not contribute to the zhp The administrative status of a zre and zhp are independent of each other If the administrative status is down then the operational status will be down independent of the underlying link state You must ifconfig up the zres to see the operational link sta...

Page 81: ... is started by default from the Linux boot up script etc rcZ d S75snmpd If you do not wish to start snmpd remove etc rcZ d S75snmpd Configuration of the OpenArchitect switch SNMP agent is the same as configuration of any standard Linux host that uses the NET SNMP agent Configuration information for persistent data and security information is kept in snmpd conf under the default SNMP configuration ...

Page 82: ... standard Linux utilities to test your SNMP agent For example snmpwalk localhost c public walks the entire MIB of the localhost that is OpenArchitect switch starting at the top of the MIB See the Linux Reference Man Pages for the usage of the SNMP utilities MIB values are decoded from their numerical representations into readable text by parsing MIBs located in the usr share snmp mibs directory If...

Page 83: ...y their current state It can also set or clear the extract led or the internal fault led or to set a port down or up To force the link on port 0 down zlc zre1 down To check the status of a link zlc zre1 query To check the status of all links zlc zre0 51 query Link Event Monitoring The zlmd application is intended to run as a daemon waiting for a configured event to occur and then running the progr...

Page 84: ...and includes a device bootstring Device 1 contains the application flash 1 image of the Linux operating system and the OpenArchitect overlay file system Application flash 1 is the primary working image for the switch Device 2 contains the application flash 2 that is an exact copy of application flash 1 You would only boot from this device if application flash 1 is corrupted and you need to restore...

Page 85: ...age After Linux boots the init process executes the etc init d rcS script which in turn executes etc rcZ d rc see Figure 6 3 Init Script Flow The etc rcZ d rc script runs S files in etc rcZ d with the start parameter The S files are the switch configuration files for example S50layer2 Ethernet Switch Blade User s Guide release 3 2 2j page 85 Bootloader examines the bootstring in the boot ROM Deter...

Page 86: ...fy the files in this directory or unpredictable results may occur Recovering from a System Failure If the switch does not function after you initially change or reconfigure the image you have several options for recovering from an error First try to telnet into the switch If you are successful remember to run zsync after fixing your problem If you cannot telnet attach a console cable to the switch...

Page 87: ...i option of zbootcfg zbootcfg d 1 i Reboot the system After the reboot clear the i option from the boot string Enter the following command zbootcfg d 1 The reboot command will also take i as an option and pass it to the Linux boot reboot i When the system boots the overlay file system is returned to the factory installed configuration At this point you have a few options Run zsync and the factory ...

Page 88: ...the zmon application At the monitor prompt type boot 2 You should see the counter again but the system should boot into the secondary kernel If you have difficulties booting contact Hewlett Packard technical support At this point follow the Upgrading the OpenArchitect Image section to put a new RAM disk image in the application flash 1 IMPORTANT Be sure not to program flash 2 since currently this ...

Page 89: ...ed similar to the following zflash d 1 rdr7000 zImage initrd Upgrading or Adding Files Follow the procedure below to upgrade or add a new file to the switch Place the file you are adding or upgrading into the appropriate location in the file system Save the file in the overlay directory area on the application flash by running zsync zsync After running zsync the file is saved to the flash for futu...

Page 90: ...p to date with the latest binaries and install new software without the need to recompile Users may create their own repositories and add entries in etc apt sources list empty by default for their private access methods to their private repository See http www debian org for complete APT documentation Ethernet Switch Blade User s Guide release 3 2 2j page 90 Downloaded from www Manualslib com manu...

Page 91: ...st and the switch Configure a host on the 10 0 0 0 network The OpenArchitect switch is pre configured with address 10 0 0 42 telnet to 10 0 0 42 telnet 10 0 0 42 After you are connected enter the login name root No password is required ZX6000 OA login root ZX6000 OA release no OpenArchitect Configuration Procedure Switch configurations can be accomplished with a few simple commands Once you ve con...

Page 92: ...ne IP network VLAN The ISL is set up in its own vlan Example Configuration Scripts Example scripts are supplied that can be used as templates Use one of the scripts located in the switch etc rcZ d examples directory to help you configure the switch The default configuration for the switch is located in the script file etc rcZ d S50layer2 The following scripts are included Each is examined in more ...

Page 93: ...ct to enable interaction between the software and hardware This initial host port called ZNYX Host Port zhp is a network interface that provides communication between all 24 in band ports Therefore linking to any port on the switch enables you to connect with OpenArchitect A zhp device is associated with one Virtual Local Area Network VLAN A virtual local area network VLAN is a logical mapping of ...

Page 94: ... or modify the zre interfaces During the initial power up of the switch the default configuration creates a Layer 2 switch The Layer 2 configuration places all of the zre interfaces in the same zhp interface The number after zre represents the corresponding switch port number that is zre1 represents port 1 on the switch Layer 2 Switch Configuration The steps to build a Layer 2 switch involve creat...

Page 95: ...onfig 1M to assign the IP address 10 0 0 42 to the interface usr sbin ifconfig zhp0 10 0 0 42 up To create another VLAN that only contained the two ports first use zconfig from the command to build the VLAN and create a network interface for the host zconfig zhp1 vlan2 zre20 zre21 Then bring up the interface with ifconfig 1M ifconfig zhp1 193 08 1 1 up Note that ports zre20 and zre21 are members o...

Page 96: ...reate Linux bridges consisting of the name of the previously created zhp device or devices preceded with a b for example if you are creating a Bridge device from zhp0 the resulting device would be bzhp0 zl2d then starts a background task that monitors the port information of the Linux bridge at a specified interval and updates the Spanning Tree state fields in the hardware when necessary brctl 8 i...

Page 97: ... that is automatically configured when you initially bring up the OpenArchitect switch In order to communicate between Layer2 interfaces you must properly setup routing The steps to build a Layer 2 switch involve creating a group of switch ports in a VLAN or Layer 2 switching domain and bringing that interface up zconfig creates the VLAN group of switch ports as well as a network interface Use ifc...

Page 98: ...tables zl3d zhp0 zhp1 The base switch switch is now configured as a Layer3 switch that can route between two Layer2 devices in silicon Using the S50layer3 Script To modify the configuration to a Layer 3 switch remove the S50layer2 file from the etc rcZ d directory and replace it with the example script file S50layer3 In the S50layer3 file each port is assigned its own Virtual Local Area Network VL...

Page 99: ...eriods after vlan1 and untag1 are used to indicate a range of values The plus sign after zre1 is a wildcard character that means auto incremented and causes each zhp interface to hold only one zre that is zhp0 has zre1 on vlan1 zhp1 has zre1 on vlan2 Runs the Linux ifconfig 1M command for each interface to assign default IP addresses 10 0 0 42 10 0 23 42 sets the netmask and brings up the interfac...

Page 100: ...t the number of zhp interfaces that are added to the routing tables depending on the number of VLANs you are adding for your network Include any other details as applicable Run the OpenArchitect zsync command to save your changes zsync Reboot the switch After rebooting your switch works from your customized Layer 3 configuration Layer 3 Switch Using Multiple VLANs An example script is also provide...

Page 101: ...usr sbin zconfig zre0 5 untag1 usr sbin zconfig zhp1 vlan2 zre6 11 usr sbin zconfig zre6 11 untag2 usr sbin zconfig zhp2 vlan3 zre12 17 usr sbin zconfig zre12 17 untag3 usr sbin zconfig zhp3 vlan4 zre18 23 usr sbin zconfig zre18 23 untag4 NOTE Double periods after vlan1 and untag1 are used to indicate a range of values Runs the Linux ifconfig command for each interface to assign default IP address...

Page 102: ... zhp0 193 08 1 1 netmask 255 255 255 0 up Adjust the number of zhp interfaces depending on the number of VLANs you are adding for your network Include any other details as applicable Run the OpenArchitect zsync command to save your changes Reboot the switch After rebooting your switch works from your customized Layer 3 configuration with multiple VLANs per port Layer 3 Routing Protocols with GateD...

Page 103: ...e 10 0 2 42 passive interface 10 0 13 42 passive interface 10 0 14 42 passive interface 10 0 15 42 passive Defines the netmask used in the interface define 10 0 0 42 netmask 255 255 255 0 define 10 0 1 42 netmask 255 255 255 0 define 10 0 2 42 netmask 255 255 255 0 define 10 0 13 42 netmask 255 255 255 0 define 10 0 14 42 netmask 255 255 255 0 define 10 0 15 42 netmask 255 255 255 0 Sets the RIP1 ...

Page 104: ... RIP protocol import proto rip all Exports all directly connected routes and routes learned from the RIP protocol export proto rip proto direct all proto rip all To Modify the GateD Scripts Copy two GateD files the OpenArchitect S file and its corresponding conf file into the rcZ d directory that is S55gatedRip1 and gated conf rip1 Notice the files are placed in the same directory as the Layer 3 c...

Page 105: ... COS parameters Some apply to an individual port some apply to a group of ports known as a block and others apply to the whole switch It is important for the user to understand the scope of the parameters to ensure that the expected behavior occurs Egress Queues The base switch provides 1 to 8 COS queues per egress port and for packets destined to the CPU from the switching fabric By default a fre...

Page 106: ...ith quanta for each queue Each queue is assigned a number of packets known as weight that it is allowed to transmit before it yields to a lower priority queue Note that with WRR the priorities of the queues are dependent on the weights allocated A higher priority queue with a smaller weight will get less wire time than a lower priority queue configured with a larger weight Note that the same weigh...

Page 107: ...d are Source IP address destination IP address IP protocol TCP or UDP source port or destination port ICMP type and TCP flags bits such as SYN The input port and output port may also be specified as either zre n where n is one of the 24 physical ports or as zhp n where the zhp interface used must be previously defined using zconfig A restriction on the fields supported is the size of the IMASK tab...

Page 108: ... p udp sport domain j ACCEPT iptables a FORWARD i zhp5 o zhp3 p tcp sport domain j ACCEPT iptables a FORWARD i zhp5 o zhp3 p tcp sport www j ACCEPT iptables a FORWARD i zhp5 o zhp3 p tcp sport 23 j ACCEPT rsync iptables a FORWARD i zhp5 o zhp3 p tcp syn j DROP iptables and filtering iptables is a firewall management user space utility used in conjunction with the Linux 2 4 kernels iptables takes a...

Page 109: ...ch the packet then the next rule in the chain is consulted Finally if there are no more rules to consult then the kernel looks at the chain default policy to decide what to do In a security conscious system this policy usually tells the kernel to DROP the packet In the base switch both the FORWARD chain hook and the INPUT chain hook packets destined for the CPU are implemented in hardware The rest...

Page 110: ...le If you see UDP packets p UDP from anywhere s 0 0 going to host 10 0 0 1 d 10 0 0 1 32 with a source port number 53 source port 53 then the target is to DROP j DROP More details on rule specifications follow Specifying Source and Destination IP Addresses Source s source or src and destination d destination or dst IP addresses can be specified in four ways The most common way is to use the full n...

Page 111: ...f an interface to match An interface is the physical device the packet came in on i or is going out on o You can use the ifconfig command to list the up interfaces that is working at the moment As a special case an interface name ending with a will match all interfaces whether they currently exist or not which begin with that string For example to specify a rule which matches all zhp interfaces th...

Page 112: ...ACTION parameters counter val Increment classifier hit counter val arp Not an action match only ARP packets i option can be used to specify ingress port or VLAN d specifies target IP address p specifies arp operation as request 1 or response 2 For arp response the o field can be used to specify the egress port ZACTION Examples Send all tcp packets arriving on zhp5 out port 2 iptables a FORWARD i z...

Page 113: ...rked mapped to a FIFO queue and transmitted by a priority scheduler tc is very flexible in the data paths that it allows The utility zqosd is a daemon that monitors Linux QoS policy and shadows the policy rules into a hardware configuration When zqosd is running tc rules are translated into hardware rules NOTE This document does not detail all of the capabilities of the tc command rather it explic...

Page 114: ...n the queues Although the weights can be any integer value they will be scaled so that the largest value is 15 or less and the smallest is at least 1 FIFO Queues pfifo and bfifo disciplines The simplest configuration for tc involves no classes or filters and only a single FIFO queue With tc queue sizes may be specified in bytes or packets The first example defines a packet limited FIFO This exampl...

Page 115: ...ets to a COS Queue Once the queues are defined for a port filters can be added to direct the desired packets into the queue The target queue is identified by the classid parameter which is the same as the handle of the cos queue For example to send unicast packets with a destination IP address of 10 91 100 5 to cos queue 3 created above the filter is tc filter add dev zre5 parent 105 protocol ip u...

Page 116: ...kets with IEEE 802 3 802 2 LLC encapsulation can be recognized based on their DSAP SSAP values using protocol all It is also possible to match the source or destination MAC address or the VLAN For this protocol displacements are measured from the beginning of the MAC header which always includes a VLAN tag after the source MAC address so a match for DSAP 0x42 and SSAP 0x42 would be tc filter add d...

Page 117: ...ng the bandwidth used by matching packets The rate threshold is specified in bytes per second with a burst size which is to be allowed when the previous rate has been below the threshold An action is specified to be taken only if the packet is out of profile that is the rate has exceeded the threshold and burst size A second action can be specified if the packet is in profile the default is to acc...

Page 118: ...0 action drop flowid 124 6 Spanning tree BPDU packets go in COS queue 6 no limit tc filter add dev zrm parent 124 0 protocol all u32 match u32 0x0180c200 0xffffffff at 0 match u16 0x0001 0xffff at 4 match u16 0x4242 0xffff at 18 flowid 124 7 VRRP heartbeat packets go in COS queue 7 limited to 500kbits second tc filter add dev zrm parent 124 0 protocol all u32 match u32 0x0100c200 0xffffffff at 0 m...

Page 119: ...d Service field to value IPV4 only 74 Yes Set the ECN to value IPV4 only 81 Yes Set the VLAN ID to value 82 No Table 7 2 Policing Actions To set the DS value to 0 for out of profile packets and 20 for in profile packets use action 74 5194 74 256 20 5194 To mirror only in profile packets to port 3 use action ok 838 70 256 3 838 u32 match selectors used in filters A u32 filter can specify multiple m...

Page 120: ...at 20 udp dst value mask u16 value mask at 22 tcp src value mask u16 value mask at 20 tcp dst value mask u16 value mask at 22 icmp type value mask u8 value mask at 20 icmp code value mask u8 value mask at 21 Table 7 3 U Match Selectors Note that specifying a tcp udp or icmp field does not automatically include a match for the appropriate IP protocol To insure that only the desired packets are filt...

Page 121: ...sd detects this state change In fact examining the CoS configuration on the switch reveals that the queue sizes have reverted to their default values The byte limited FIFO queue case differs only slightly from the packet limited FIFO case The syntax is almost identical In hardware the limit is based on 128 byte cells The specified byte limit is divided by 128 to determine the cell limit Always spe...

Page 122: ...ith a handle of 100 0 as in the FIFO cases The prio option identifies the type of queuing discipline Priority scheduling implies multiple queues and the bands 4 parameters specify that there are four queues The priority map may be read from left to right as Priority n maps to Queue q where n is the index of the list element numbering from 0 and q is the value specified by that element So this exam...

Page 123: ...ns from the first tc command Note that all queue disciplines in this test may be cleared by deleting the root discipline as before tc qdisc del dev zhp0 root The U32 Filter The U32 filter provides the capability to match on fields in the L2 L3 or L4 header of a packet Each match rule gives the location of the field to be tested which is always a 32 bit word a mask selecting the bits to be tested a...

Page 124: ... conversions of individual rules from tc entries into hardware entries They do not explain the results of creating rules that are individually supported but which do not make sense in conjunction Although the translation rules handle some inconsistency between software and hardware a user must define a combination of rules that is reasonable in hardware to ensure predictable results Handle Semanti...

Page 125: ...ure traffic As long as COPS is running a connection between the PEP and PDP should stay open A PEP could query a PDP at any time asking for a policy decision Alternatively an administrator could modify the policy on a PDP which would then push any policy changes to its PEPs Protocol Architecture The COPS protocol is broken into several components The base layer is the COPS protocol itself which de...

Page 126: ...09 A Policy Information Base PIB defines the representation of a particular data set For example the Diffserv PIB specifies the structures used to represent all Diffserv elements PIBs are functionally equivalent to Management Information Bases MIBs such as those used by SNMP The OA PEP has implemented those portions of the Diffserv and Framework PIBs that are supported by the underlying switch arc...

Page 127: ... is 3288 PEPID The PEP Identifier Role If A mapping of roles to interfaces The name of the role is followed by a comma delineated list of interfaces Multiple role interface mappings are defined through multiple Role If declarations Ethernet Switch Blade User s Guide release 3 2 2j page 127 Downloaded from www Manualslib com manuals search engine ...

Page 128: ...Please use a combination of upper and lower case letters and numbers Enter new password Re enter new password Password changed ZX6000 OA release no CAUTION Even when just changing the password you need to save the file system overlay with the zsync command or you will lose your changes upon reboot Adding Additional Users Additional users can be added with the adduser command Additional users are d...

Page 129: ...the the IP address dynamically execute the command dhclient zhp0 The default device name zhp0 works with the default configuration of the OpenArchitect switch and will attempt to obtain an IP address from the local DHCP server To use DHCP to set your IP addresses automatically on boot up uncomment the the following line in etc init d rcS by removing the sign usr sbin dhclient zhp0 DHCP Server Conf...

Page 130: ...UTC formerly Greenwich Mean Time or GMT To display the local time set the TZ variable to the appropriate name and the number of hours offset from UTC For instance export TZ PST8 for Pacific Standard Time offset from UTC by 8 hours To set an environment variable add the entry to etc profile Remember to zsync to make your changes permanent Network File System NFS Client Configuration The OpenArchite...

Page 131: ...first follow the steps to enable the NFS client Then edit etc exports to include the file systems you wish to export Consult a standard Linux Network Administrator s Guide or man pages regarding options for exported file systems Generally an entry in etc exports looks like the following nfs localdomain com ro Now start nfsd to export the mount points and begin answering requests from remote client...

Page 132: ... password on the remote system Due to the lack of authentication information tftpd will allow only publicly readable files to be accessed The default location of these files is tftpboot SNMP Agent Simple Network Management Protocol SNMP is the defacto standard for network management An SNMP agent maintains a structure of data for a network device in a virtual information database called a Manageme...

Page 133: ... Frameworks RFC 2572 Message Processing and Dispatching for the Simple Network Management Protocol SNMP RFC 2573 SNMP Applications RFC 2574 User based Security Model USM for version 3 of the Simple Network Management Protocol SNMPv3 RFC 2575 View based Security Model VACM for version 3 of the Simple Network Management Protocol SNMP RFC 2576 Coexistence between Version 1 Version 2 and Version 3 of ...

Page 134: ... IF MIB linkUp IF MIB linkDown UCD SNMP MIB ucdShutdown RMON MIB risingAlarm RMON MIB fallingAlarm VRRP vrrpTrapNewMaster VRRP vrrpTrapAuthFailure EGP rfc1213 egpNeighborLoss BGP4 MIB bgpEstablished BGP4 MIB bgpBackwardTransition Table 8 2 Supported Traps SNMP and OpenArchitect Interface Definitions OpenArchitect defines three types of devices zre physical port zrl trunk of ports zhp interface con...

Page 135: ...es show the relationships ifMIB ifMIBObjects ifStackTable ifStackEntry ifStackStatus 0 1 active 1 ifMIB ifMIBObjects ifStackTable ifStackEntry ifStackStatus 0 2 active 1 If they are X Y then if X 0 there is nothing above this interface if Y 0 there is nothing below this interface otherwise interface X has interface Y as a logical constituent SNMP Configuration The SNMP agent is called snmpd and is...

Page 136: ...NMP Applications The OpenArchitect switch includes the snmpget snmpwalk and snmpset applications you can use these standard Linux utilities to test your SNMP agent For example snmpwalk localhost c public walks the entire MIB of the localhost OpenArchitect switch starting at the top of the MIB See the Linux Reference Man Pages for the usage of the SNMP utilities MIB values are decoded from their nu...

Page 137: ...k speed and state of individual ports of the switch or display their current state It can also set or clear the extract led or the internal fault led or to set a port down or up To force the link on port 0 down zlc zre1 down To check the status of a link zlc zre1 query To check the status of all links zlc zre0 23 query Link Event Monitoring The zlmd application is intended to run as a daemon waiti...

Page 138: ...cludes a device bootstring Device 1 contains the application flash 1 image of the Linux operating system and the OpenArchitect overlay file system Application flash 1 is the primary working image for the switch Device 2 contains the application flash 2 that is an exact copy of application flash 1 You would only boot from this device if application flash 1 is corrupted and you need to restore the s...

Page 139: ...process executes the etc init d rcS script which in turn executes etc rcZ d rc see Figure 9 3 Init Script Flow The etc rcZ d rc script runs S files in etc rcZ d with the start parameter The S files are the switch configuration files for example S50layer2 Ethernet Switch Blade User s Guide release 3 2 2j page 139 Figure 9 2 Booting up Process Flow Bootloader examines the bootstring in the boot ROM ...

Page 140: ...unction after you initially change or reconfigure the image you have several options for recovering from an error First try to telnet into the switch If you are successful remember to run zsync after fixing your problem If you cannot telnet attach a console cable to the switch Bring down the system and properly attach the console cable see Chapter 2 Connecting to the Console Port System Boots with...

Page 141: ...and zbootcfg d 1 The reboot command will also take i as an option and pass it to the Linux boot reboot i When the system boots the overlay file system is returned to the factory installed configuration At this point you have a few options Run zsync and the factory installed system will be restored to your flash NOTE All changes you have made and saved prior to the zsync command will be lost Restor...

Page 142: ...Upgrading the OpenArchitect Image section to put a new RAM disk image in the application flash 1 IMPORTANT Be sure not to program flash 2 since this is your only current bootable image The command to program flash 1 should be similar to the following command The image name may be slightly different depending on the model of switch and version of the image zflash d 1 rdr6000 zImage initrd Upgrading...

Page 143: ...The image file will be something named similar to the following zflash d 1 rdr6000 zImage initrd Upgrading or Adding Files Follow the procedure below to upgrade or add a new file to the switch Place the file you are adding or upgrading into the appropriate location in the file system Save the file in the overlay directory area on the application flash by running zsync zsync After running zsync the...

Page 144: ... to date with the latest binaries and install new software without the need to recompile Users may create their own repositories and add entries in etc apt sources list empty by default for their private access methods to their private repository See http www debian org for complete APT documentation Ethernet Switch Blade User s Guide release 3 2 2j page 144 Downloaded from www Manualslib com manu...

Page 145: ...t Interfaces The 3 0 Base Interface switching system provides 24 ports of Gigabit Ethernet service for up to 14 line cards with support for dual shelf manager connections Three ingress egress ports are available on the front panel An additional Gigabit Ethernet port ISL on the backplane interconnects the switches together for high availability configurations If the OpenArchitect environment is run...

Page 146: ...itch Blade features a RS 232 console port located on the front panel that allows communication with the switch when the Out of Band Ethernet port is not available or in band Ethernet service cannot be established with the switch A hyperterminal application is recommended to contact the Ethernet Switch Blade through a telnet session when using the console port An RS 232 to RJ 45 adapter is required...

Page 147: ...ower up 5 Use a terminal emulation program to access the switch console Base Interface Out of Band Ethernet Connection Connect an Ethernet cable from the Ethernet Switch Blade front panel MGMT OOB 2 in Figure 10 2 to your PC 1 Configure a host on the 10 0 0 0 network 2 The OpenArchitect switch is pre configured with address 10 0 0 42 telnet to 10 0 0 42 telnet 10 0 0 42 3 After you are connected e...

Page 148: ...ed to connect to the console port of the switch See the Users Guide for more information Figure 10 3 showsthe RJ 45 serial console 3 and Out of Band OOB ports 4 for the Fabric Interface To attach the console cable to the Ethernet Switch Blade switch 6 Plug the RJ 45 end of the console cable P N 6900 63006 shipped with the HP by5700 ATCA 14 Slot Blade Server into the RJ 45 Console Port 1 on the fro...

Page 149: ...42 telnet to 10 0 0 42 telnet 10 0 0 42 3 After you are connected enter the login name root No password is required OpenArchitect login root 4 You are now logged in and should see the following shell prompt Ethernet Switch Blade OA3 2 2h NOTE The OOB port is not active by default with the factory configured configuration The first time you log into the switch either in band or through the console ...

Page 150: ...ilure occurs during the Shelf Manager activation stage the Ethernet Switch Blade has to be diagnosed through the ShMM as the OpenArchitect environment is not booted Table 11 1 lists the solutions to problems that may occur at the different stages the Ethernet Switch Blade transitions through to become active and steps that should be taken if it fails during activation Ethernet Switch Blade User s ...

Page 151: ...tch has reported critical sensor data for temperature or voltage the ShMM can prevent the switch from booting To determine if the critical sensor events persist it may be necessary to alter the rules enforced by the ShMM to allow the switch to boot receive back end power See Accessing the ShMM section below for more information M3 OFF OFF Check the Shelf Managers to see if the voltage and temperat...

Page 152: ...a remote connection to the ShMM can be established it is possible to collect some preliminary troubleshooting data Consult your Chassis user s guide for more information on logging into the Shelf Manager and see Verifying Communications Between the ShMM and Switch below Verifying Communications Between the ShMM and Switch Verify that the communications between the IPMC on the switch and the ShMM h...

Page 153: ...re threshold is still reported then return the switch for repair Analyzing Mstate information for the switch The SEL will also contain Mstate information for the switch that can be useful in determining conditions related to a failed boot Knowing the state change transition history in the SEL can help to narrow down activation problems with the switch The states are defined as follows M0 No power ...

Page 154: ...output that reports if the ShMM thinks it has granted access to ports on the switches Check the Shelf Manager User s Guide for the expected output Ethernet Switch Blade User s Guide release 3 2 2j page 154 Downloaded from www Manualslib com manuals search engine ...

Page 155: ...y the Shelf Manager If there is a problem with the loading of OpenArchitect due to a hardware failure or corrupt file system the back up image can help to troubleshoot the condition The following chapter provides tips to troubleshooting a failed OpenArchitect load Ethernet Switch Blade User s Guide release 3 2 2j page 155 Downloaded from www Manualslib com manuals search engine ...

Page 156: ... enabled by the ShMM and starts to boot Bootloader examines the bootstring in the Boot ROM Loads image from Flash device 1 Loads image from Flash device 2 Begins execution of RAM image Cannot boot OpenArchitect Determines if the bootstring is dev 1 Determines if the bootstring is dev 2 Ethernet Switchblade has been enabled by the ShMM and starts to boot Figure 12 1 OpenArchitect Boot Process Downl...

Page 157: ...are successful remember to run zsync after fixing the problem After attaching the system console cable if the system boots fix the problem that does not allow you to telnet to the box run zsync and reboot The problem is likely to be in the configuration files contained in etc rcZ In order to telnet into the box there must be a configured interface with a proper IP address For example zhp0 is confi...

Page 158: ... zbootcfg d 1 4 The reboot command will also take i as an option and pass it to the Linux boot reboot i 5 When the system boots the overlay file system is returned to the factory installed configuration At this point you have a few options Caution All changes you have made and saved prior to the zsync command will be lost when the command executes a Enter zsync and the factory installed system wil...

Page 159: ... If you have difficulties booting contact Hewlett Packard technical support 5 At this point follow the Upgrading the OpenArchitect Image section to put a new RAM disk image in the application flash 1 IMORTANT Do not program flash 2 since this is currently your only bootable image The command to program flash 1 should be similar to the following command The image name may be slightly different depe...

Page 160: ...gregation eth Each switch fabric and base in a Ethernet Switch Blade Series unit has Out of Band OOB Ethernet port on the front panel These are an alternative maintenance port supplying Ethernet connectivity instead of serial connectivity and are connected only when performing switch maintenance activities Physical Interfaces The tables below provides a translation guide for mapping the zre ports ...

Page 161: ... this release on either the Base or Fabric Interfaces Default Base Interface Configuration Editing the S50layer2 script can change the Ethernet Switch Blade Base Interface default configuration The S50Layer2 script and included example scripts etc rcZ d examples can be used as templates to create custom scripts The default S50layer2 scripts configures the switch accordingly 24 port Layer 2 Switchi...

Page 162: ...nd loads into the Vital Product Data VPD area if necessary Editing this script is not recommended 3 S50layer2 Script that sets up a basic Layer 2 switch All 24 10 100 1000 ports are set up on one IP network VLAN Ethernet Switch Blade User s Guide release 3 2 2j page 162 Figure 13 1 Default Base Interface Network Diagram Downloaded from www Manualslib com manuals search engine ...

Page 163: ... appropriate for an Ethernet Switch Blade It may need to be modified for other models Ethernet Switch Blade User s Guide release 3 2 2j page 163 OpenArchitect login root sh 2 04 ifconfig lo Link encap Local Loopback inet addr 127 0 0 1 Mask 255 0 0 0 UP LOOPBACK RUNNING MTU 16144 Metric 1 RX packets 0 errors 0 dropped 0 overruns 0 frame 0 TX packets 0 errors 0 dropped 0 overruns 0 carrier 0 collis...

Page 164: ...0 TX packets 0 errors 0 dropped 0 overruns 0 carrier 0 collisions 0 txqueuelen 0 RX bytes 0 0 0 b TX bytes 0 0 0 b zhp0 Link encap Ethernet HWaddr 00 11 65 0B C0 38 inet addr 10 0 0 42 Bcast 10 0 0 255 Mask 255 255 255 0 UP BROADCAST RUNNING MULTICAST MTU 1500 Metric 1 RX packets 488 errors 0 dropped 0 overruns 0 frame 0 TX packets 377 errors 0 dropped 0 overruns 0 carrier 0 collisions 0 txqueuele...

Page 165: ... not negotiate correctly See the section on Connecting to Devices with Fixed Port Speeds Ext FLT LED on The EXT FLT LED indicates that communications could not be established with one or more remote partner devices on an active port or ports Ports which were configured to be up via ifconfig but do not have remote partner devices attached can cause the EXT FLT LED to be lit even if there are no har...

Page 166: ...ernet Switch Blade switch UP The port has been configured to be active and has established a link with another network device DOWN The port has been configured to be active but has not establish a link with another network device Link Speed Auto Auto Negotiate with the other device The node device must be configured to Auto Negotiate as well or network connectivity errors will occur 1000fd Full Du...

Page 167: ...nal fault indicates that a port has been configured to active but a link has not been established OK ON Indicates that the Ethernet Switch Blade has successfully loaded OpenArchitect Querying Base Interface ekey Status Link Status for a single port To query a link status for a single port type zre x query for example zlc zre13 query Example Output Link Status for a range of ports To query the link...

Page 168: ...EXT_FLT ON OK ON zre6 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre7 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre8 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre9 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre10 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre11 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre12 DOWN AUTO PAUSE ENABLE EXT_FLT ON OK ON zre13 UP 10...

Page 169: ...Y_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre25 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre26 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre27 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre28 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre29 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre30 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre31 EKEY_DISABLED AUTO...

Page 170: ...t to the same port speed setting otherwise diminished or no connections can be made If devices connected to the Ethernet Switch Blade are connected at a fixed Full Duplex high error rates or sporadic connectivity can be observed It is recommended that all devices connected to the Ethernet Switch Blade be set to auto negotiate External Fault LED The EXT FLT LED indicates that communications could n...

Page 171: ...0 0 0 43 ping cannot resolve 10 0 0 43 Unknown host sh 2 04 sh 2 04 ping 10 0 0 43 PING 10 0 0 43 56 data bytes 64 bytes from 10 0 0 43 icmp_seq 0 ttl 109 time 69 094 ms 64 bytes from 10 0 0 43 icmp_seq 1 ttl 109 time 69 341 ms 64 bytes from 10 0 0 43 icmp_seq 2 ttl 109 time 69 363 ms 64 bytes from 10 0 0 43 icmp_seq 3 ttl 109 time 69 109 ms 64 bytes from 10 0 0 43 icmp_seq 4 ttl 109 time 69 859 m...

Page 172: ...er 2 traceroute with only two devices Ethernet Switch Blade User s Guide release 3 2 2j page 172 sh 2 04 traceroute 192 168 1 101 traceroute to 192 168 1 101 192 168 1 101 64 hops max 40 byte packets 1 192 168 1 101 192 168 1 101 1 888 ms 1 135 ms 0 814 ms sh 2 04 Downloaded from www Manualslib com manuals search engine ...

Page 173: ...4 port PHY 5 SDRAM 14 Zone 2 ATCA Connector 6 Isolation Transformer 15 Zone 1 ATCA Connector 7 IPMI Controller 16 Isolation Transformers 8 Power Supply 17 4 port PHY 9 Switch Chip U56 18 Fuses Ethernet Switch Blade User s Guide release 3 2 2j page 173 Figure 14 1 ATCA Base Inside View Downloaded from www Manualslib com manuals search engine ...

Page 174: ...3 Isolation Transformer 4 Switch Chip U60 5 SDRAM 6 Switch Chip U59 7 Isolation Transformer Ethernet Switch Blade User s Guide release 3 2 2j page 174 Figure 14 2 ZMC Daughter Card Outside View Downloaded from www Manualslib com manuals search engine ...

Page 175: ... CPU U22 10 ZMC Connector 4 10 Gigabit XFP 11 Zone 3 ATCA Connector 5 10 Gigabit PHY 12 Power Supply Ethernet Switch Blade User s Guide release 3 2 2j page 175 Figure 14 3 ZMC Daughter Board Inside View Downloaded from www Manualslib com manuals search engine ...

Page 176: ...n the Power On Self Test POST A failure to boot the OpenArchitect kernel Kernel panics Loss of CPU response sometime after operation is initiated 5 3 RAM The Ethernet Switch Blade uses SDRAM for the primary CPU memory system A failure of RAM will generally cause any of the following Kernel panics Loss of CPU response Unexplained software failures 1 8 ROM The Flash ROM subsystem on the Ethernet Swi...

Page 177: ... or is not programmed there will be no boot activity on the console port after power up Network Cable Network cable failures will result in loss of link or loss of data packets 7 IPMI Controller If the IPMI controller is not functioning the Ethernet Switch Blade board will not power up when inserted into a powered up chassis This condition may also result from a failure within the ATCA Shelf Manag...

Page 178: ...y Ethernet Switch Blade interface Link Status for a single port To query a link status for a single port type zre x query for example zlc zre13 query Example Output Link Status for a range of ports To query the link status for a range of ports type zre x x query For example zlc zre0 23 query Ethernet Switch Blade User s Guide release 3 2 2j page 178 sh 2 04 zlc zre13 query zre13 UP 100FD PAUSE ENA...

Page 179: ...zre5 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre6 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre7 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre8 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre9 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre10 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre11 EKEY_DISABLED AUTO PAUSE ENABLE EXT_FLT ON OK ON zre12 DOWN AUTO PAUS...

Page 180: ...04 top The top command can help you isolate software related memory problems to specific processes Example output Testing the Control Processor The Base Interface and Fabric Interface control processors are critical components in the operation of the Ethernet Switch Blade The control processors host the OpenArchitect operating system and manage the switch fabric devices Ethernet Switch Blade User ...

Page 181: ...Blade replace and return the Ethernet Switch Blade for repair Software Error If you can successfully contact the Ethernet Switch Blade through the console port See Chapter 10 for more information enter the top command at the command prompt The top command lists the processor utilization of all current processes sh 2 04 top The top command can help you isolate software related problems to specific ...

Page 182: ...INT FLT LED is illuminated replace the switch and return it for repair Ethernet Switch Blade User s Guide release 3 2 2j page 182 Downloaded from www Manualslib com manuals search engine ...

Page 183: ... cable for a wired port Spontaneous Failover Activity If while rebooting the inactive switch in a chassis causes the active switch to reboot and or an unexpected failover you can try setting the zsp conf file vrrp_msg_rate to 500 The VRRP_msg_rate is the time in milliseconds between transmissions VRRP messages on the inter switch link ISL The VRRP protocol requires the absence of three VRRP messag...

Page 184: ...ta from switch memory zstats V The following output is shown for the 3 0 Base Interface 3 0 Base Interface Ethernet Switch Blade User s Guide release 3 2 2j page 184 sh 2 04 zstats V VITAL PRODUCT DATA Open Architect Advanced TCA Switch PN 700 0170 003 SN 01BZ0X041HWP V0 00116509E000 V1 1021 V2 3 V3 Z V4 1 V5 1 V9 2 EC 00000000 VA 3800 RV 0x73 V7 0 V8 0 V6 3 2 2 build g VS 5 VP 1 70 VM 19 VR 4 VZ ...

Page 185: ...Version VZ BootLoader Version Ethernet Switch Blade User s Guide release 3 2 2j page 185 ZX7100 OA3 2 2h zstats V VITAL PRODUCT DATA Open Architect Advanced TCA Fabric Switch PN 700 0174 002 SN 01CS00029HWP V0 0011650BC000 V1 1021 V2 3 V3 Z V4 1 V5 1 V9 2 EC 00000000 VA 3C00 VE 2242628223436383244464842545658526466686F4F5F6F7H1H2F8R8 VF 2747678728482949305031513252335334543555R4R5R6R7H1H2UCF9 Y6 U...

Page 186: ...to reach 10 0 0 42 3 Using the procedures referenced in Step 1 above download the OpenArchitect image upgrade to a local system 4 Check for free space with the df command The OpenArchitect image is very close to the limit of free space available on a default system so you may need to clear some space prior to downloading the new OpenArchitect image to the switch CAUTION Do not remove the existing ...

Page 187: ...e zflash d 1 rdr6000 zImage initrd Fabric Interface zflash d 1 rdr7100 zImage initrd IPMC Firmware Upgrade Upgrading the IPMC Firmware through OpenArchitect is not currently supported Ethernet Switch Blade User s Guide release 3 2 2j page 187 Downloaded from www Manualslib com manuals search engine ...

Page 188: ...nformation see Chapter 10 Connecting to the Ethernet Switch Blade 2 When you see the number counter appear after the zmonitor banner press any key on the console keyboard to enter the zmon application 3 At the monitor prompt type boot 2 You should see the counter again but the system should boot into the secondary kernel NOTE If you have difficulties booting into Flash Device 2 the Flash Devices m...

Page 189: ... type of traffic TCP UDP Broadcast Multicast 2 MAC addresses are useful as well 3 Document a repeatable test case to reproduce the problem 4 Obtain configuration scripts the S scripts run from the etc rcZ d directory when the switch first boots 5 Run etc rcZ d tools support_script sh and capture the output before and after the problem occurs Navigate to the etc rcZ d tools directory and run the fo...

Page 190: ... flash 2 that is an exact copy of application flash 1 You would only boot from this device if application flash1 is corrupted and you need to restore the switch to the factory shipped configuration Ethernet Switch Blade User s Guide release 3 2 2j page 190 Boot ROM on Device 0 zmon Free space Offset 7f000 dev bootstring Application Flash 1 on Device 1 Offset 0 initrd Linux and its file system Free...

Page 191: ...etup any combination of Layer 2 and Layer 3 switching configurations with VLAN support Running the zconfig command causes network interfaces to be presented to the Linux operating system These interfaces can be setup for Layer 2 bridging functions such as Spanning Tree Protocol or Layer 3 routing through the Linux operating system zl2d is run as a daemon to monitor the Linux operating system bridg...

Page 192: ...as follows d level Set the debug level The default debug level is 1 The higher the level the more debugging output is produced Debugging output is sent to the controlling tty This debugging output is from vrrpconfig To set the debug level of vrrpd one would use the vrrpd debug level setting option placed after the in the vrrpconfig command line a Display in a user readable format information about...

Page 193: ...hod that changes the priority to 99 for the Virtual Router associated with the Virtual Router Identifier 1 vrrpconfig v 1 p 99 SEE ALSO vrrpd Ethernet Switch Blade User s Guide release 3 2 2j page 193 Downloaded from www Manualslib com manuals search engine ...

Page 194: ...the Master become unavailable This allows any of the virtual router IP addresses on the LAN to be used as the default first hop router by end hosts The advantage gained from using VRRP is a higher availability default path without requiring configuration of dynamic routing or router discovery protocols on every end host OPTIONS The following options are supported by vrrpd h display the usage line ...

Page 195: ...options Each line represents a Virtual Router Parameters given on the command line apply to all Virtual Routers defined by the conf file So for example if the command line reads vrrpd d 50 c vrrpd conf And the vrrpd conf file contains v 1 i zhp0 I zhp3 10 0 0 43 v 2 i zhp1 I zhp3 11 0 0 42 vrrpd would be started controlling two Virtual Routers one for 10 0 0 43 and the other for 11 0 0 42 They wou...

Page 196: ...sing the n option is not recommended D level Set debugging output to the supplied level ipaddr the ip address es of the virtual server SEE ALSO vrrpconfig Ethernet Switch Blade User s Guide release 3 2 2j page 196 Downloaded from www Manualslib com manuals search engine ...

Page 197: ...ary OpenArchitect image d 2 Loads an image located at offset 0 in the application flash 2 This is the factory shipped location for the alternate OpenArchitect image Any characters after the d dev parameters are saved in flash memory and passed unchanged to the booting kernel OPTIONS a Displays the current boot string The default factory shipping string is dev1 d dev Specifies the ROM device from w...

Page 198: ...es the i option to the booting kernel This is useful when recovering from a mistake saved to the read write file system or after updating the application flash 1 and doing the first boot The i option prevents the read write file system from overwriting the initial RAM disk image zbootcfg d 1 i SEE ALSO zflash reboot 8 Ethernet Switch Blade User s Guide release 3 2 2j page 198 Downloaded from www M...

Page 199: ...een VLAN groups A network interface uses the following format zhpN e g zhp0 N is an integer between 0 and 9999 The value of N is not required to be the same as any of the port s that are its members The range 0 4999 is reserved for network interfaces created by users The range 5000 9999 is reserved for network interfaces created by switch applications A trunk uses the format zrlK where K is an int...

Page 200: ...ode is set and removed on a global basis with the following syntax dvlan 0x8100 0x9100 or other unused ethertype dvlan teardown The first option sets double VLAN tag mode on all ports and establishes the outer tag id The second tears down double VLAN tag mode Trunk Interface Statements A trunk interface statement begins with the trunk name followed by an equals sign and an action Trunk interface s...

Page 201: ...ayer is the same as specifying that layer itself i e zrl0 ip source_address ip destination_address is the same as zrl0 ip NOTE The Ethernet Switch Blade supports destination_address and or source_address for MAC and IP It cannot combine MAC and IP settings nor does it support port settings Examples of trunk interface statements This statement creates a trunk containing three ports zrl5 zre11 zre15...

Page 202: ...exist the specified ports or trunks are added to the network interface and VLAN group teardown Deletes the network interface and the associated VLAN group zre_list multicast mac_address Register the multicast mac_address on the zre_list ports associated with the given VLAN multicast_clear Clear all registered multicast address on all the ports in the VLAN list of ports or trunks teardown Deletes t...

Page 203: ...rface actions may include SYNTAX zconfig zre_list untag n untag N Packets sent from this port or trunk for VLAN N are transmitted without a VLAN tag The port or trunk specified must have previously been included in the VLAN group with VID N zconfig zre_list multicast forward_type forward_type Set the ports specified to act as defined by the forward_type for multicast traffic Possible forward_types...

Page 204: ...ting larger more complex configurations Wild card characters for zconfig include comma Use for creating lists dot dot Specifies an inclusive range plus Specifies auto incrementing Below are some examples for the correct usage of the comma and dot dot Each line below produces the same results zhp0 vlan1 zre1 zre2 zre3 zre4 zhp0 vlan1 zre1 4 zhp0 vlan1 zre1 zre2 4 zhp0 vlan1 zre1 2 zre3 4 The follow...

Page 205: ...all ports as untagged in their respective VLANs zhp0 13 vlan1 14 zre1 zre1 13 untag1 This is equivalent to zhp0 vlan1 zre1 zhp1 vlan2 zre2 zhp2 vlan3 zre3 zhp13 vlan14 zre14 zre1 untag1 zre2 untag2 zre3 untag3 zre14 untag14 The previous configuration can be used for creating a 14 port Layer 3 switch with each port assigned to its own VLAN In the next example one VLAN group with VID number 1 is cre...

Page 206: ...tion can be used for creating a 14 port Layer 2 switch all 14 ports assigned to the same VLAN SEE ALSO zl3d Ethernet Switch Blade User s Guide release 3 2 2j page 206 Downloaded from www Manualslib com manuals search engine ...

Page 207: ...d The OpenArchitect switch supports up to eight class of service queues for packets to be sent out each of the Ethernet ports or forwarded to the CPU Normally packets are placed in these queues based on their 802 1p priority for tagged packets or the default priority for the port on which they arrive The queue destination for each priority is determined by a map A separate map is used for each ing...

Page 208: ...This option assigns a default priority for untagged packets arriving on each port in the port list The default priority ranges from 0 lowest to 7 highest m q0 q7 port list Specifies the priority to COS queue map The first parameter maps priority 0 to queue q0 second maps priority 1 to queue q1 etc the queues are numbered 0 to 7 The port list identifies which ingress ports will use this map If no p...

Page 209: ... configurable number of packets are scheduled from each queue before moving on to the next DRR Deficit Round Robin packets are scheduled from a backlogged queue until the configured number of bytes for that queue have been sent w queue weight list port list Provides the weights for WRR and DRR scheduling For WRR the weights are the number of packets scaled such that all weights are between 1 and 1...

Page 210: ...ived on all ports zcos m 0 1 2 3 4 5 6 7 3 To set up weighted round robin scheduling on ports zre10 to zre14 and the CPU with a weight of 2 for queue 0 3 for queue 1 and 1 for all other queues zcos k WRR w 1 3 1 1 1 1 1 1 zre10 14 cpu 4 To limit the rate of packets sent to the CPU to 15 Megabits sec with bursts of no more than 20 000 bytes zcos g 15000 20 cpu 5 To guarantee CPU cos queue 5 500 kbp...

Page 211: ...ed interval of heartbeats and the number of missed heartbeats of the software component before the Ethernet Switch Blade should be rebooted If either the interval or number of heartbeats is 0 the software component is off The h option is used to toggle on and off the hardware component of the watchdog timer The hardware component is off by default Once the software component of the watchdog timer ...

Page 212: ...esources and processes in the system OPTIONS d set debug level to level h Toggle use of the hardware watchdog timer Off by default i Time interval in milliseconds between zdog to driver heartbeats n Number of missed heartbeats before system reboot b Send a single heartbeat to the driver a Display current configuration SEE ALSO http www tildeslash com monit Ethernet Switch Blade User s Guide releas...

Page 213: ...d actions OPTIONS d level Sets the level of debugging output required by zconfig The default level is one 1 Setting the debug level higher produces more output Four 4 is currently the maximum output level p port Set the multicast port to which messages will be sent f Run zfilterd in the foreground by default it runs in the background l Log all diagnostic output to var log zfilterd log I pid Set ou...

Page 214: ...ding to the boot ROM application flash 1 or application flash 2 respectively i upgradeipmi img will load the file upgradeipmi img into the IPMI controller flash memory This updates the program version it does not affect the FRU data Progress indicators will be printed during the update It may take four minutes to flash Once the update is complete the IPMI controller is rebooted which may cause the...

Page 215: ... command as an error can render your switch inoperable Do not interrupt this process until complete SEE ALSO zbootcfg Ethernet Switch Blade User s Guide release 3 2 2j page 215 Downloaded from www Manualslib com manuals search engine ...

Page 216: ...tion API s VLAN table SYNOPSIS zl2 i index m mac_address a v vlan_id P port h host_name d level zl2mc i index m mac_address a v vlan_id P port h host_name d level zl3host i index m mac_address a v vlan_id P port h host_name d level zl3mc i index m mac_address a v vlan_id P port h host_name d level zl3net i index m mac_address a v vlan_id P port h host_name d level zvlan i index m mac_address a v v...

Page 217: ... a Displays the entire table v vlan_id Displays entries whose VLAN ID field matches vlan_id Only valid for tables that have a VLAN ID field Cannot be combined with i m or P P port Displays the entries whose port field matches port Only valid for tables that have a PORT ID field Cannot be combined with i m or v h host_name Specifies which hostname to connect By default zgr connects to the locally c...

Page 218: ...ing command displays all entries of the zl2 table zl2 Be careful the c option does not ask The following command deletes all entries in the zl2 table zl2 c SEE ALSO zal Ethernet Switch Blade User s Guide release 3 2 2j page 218 Downloaded from www Manualslib com manuals search engine ...

Page 219: ...cket If the VLAN does not exist zgvrpd creates it If zgvrpd deletes the last port from a dynamically created VLAN it also deletes the VLAN When a VLAN is dynamically created a corresponding zhpN interface is also created where N is an integer between 5000 and 9999 The value of N is equal to 5000 plus the VLAN identification number VID For example if zgvrpd creates VLAN 5 it also creates a zhp5005 ...

Page 220: ...zhp interface There is no default A target must be specified EXAMPLES In the following example zgvrpd starts a background task that enables the GVRP protocol for the ports in the zhp0 interface zgvrpd receives and sends GVRP packets and updates the VLAN configuration accordingly This background task continues throughout the life of the Layer 2 network or until manually terminated zgvrpd t zhp0 Onc...

Page 221: ...Starts or stops the zl2d daemon t msec Cause zl2d to monitor the Spanning Tree state of each port on each bridge every msec milliseconds If unspecified the default is 500 milliseconds f Enables Fast Forward on bridge s using 0x4000 16384 as the dynamic root priority d level Sets the level of debugging output required by zl2d The default level is one 1 Setting the debug level higher produces more o...

Page 222: ...h includes all of the zre n devices previously associated with the zhp0 device zl2d then starts a background task that monitors the port information of the Linux bridge every 500 ms and updates the Spanning Tree state fields in the hardware when necessary zl2d t 500 zhp0 Once you run zl2d use brctl 8 to display and alter your Spanning Tree settings SEE ALSO zconfig brctl 8 Ethernet Switch Blade Us...

Page 223: ...rly network route entries are removed when the corresponding Linux FIB table entry is deleted OPTIONS h hostname Specifies which host to monitor By default zl3d monitors the OpenArchitect switch that is locally connected i e the one that is on the local PCI bus t msec Sets the timeout value By default zl3d wakes up every 15 seconds 15000 ms to look for updates to the Linux routing tables and to do...

Page 224: ... the entry into the switch host route table If an entry in the Linux FIB table is a host entry and zl3d is able to resolve the MAC address of the destination host then the entry is inserted into the switch host route table If an entry from the FIB table is a gateway entry is not local and zl3d is able to resolve the MAC address of the gateway then the entry is inserted into the switch network rout...

Page 225: ...eturns the number of ports that match the option port_list Port or list of ports on which to take action Port lists are supplied in zconfig syntax e g zre1 zre2 4 etc action Set link speed or state to up down auto 1000fd 1000hd 100fd 100hd 10fd or 10hd The interface must be down to change the port speed Set intfault or extfault Must supply option Use query to return present settings on off Turn on...

Page 226: ...et to on or off the LED will not change when links go up or down or interfaces are configured If set to other the LED resumes its normal operation The next example globally turns on the Pull extract LED zlc extract on Additional capabilities are also available by supplying an additional led action zlc led_name on The led_name LED is turned on The LED will not change when links go up or down or int...

Page 227: ...SEE ALSO ifconfig 8 Ethernet Switch Blade User s Guide release 3 2 2j page 227 Downloaded from www Manualslib com manuals search engine ...

Page 228: ...e zlmd process d level Set debug level to level f configuration_file configuration Read configuration from file If file is a configuration is read from stdin Without the f option a single line of input can precede the last flag i e Configuration CONFIGURATION SYNTAX zlmd takes configuration data from standard input or from a file with the f option In either case the configuration syntax is the sam...

Page 229: ...xtraction 1 insertion 2 Note The ppa parameter is undefined and should be ignored EXAMPLES In the following example zlmd monitors ports 1 through 4 and runs a script called prt_change upon a link change event zlmd zre1 4 usr sbin prt_change Suppose port 2 were UP and you disconnected the cable zlmd would call prt_change with the following parameters usr sbin prt_change 0 2 0 1 where 0 is the ppa 2...

Page 230: ...cS by default with no parameters OPTIONS b Do not background the process i e run in foreground t time the time between logfile checks in seconds default 60 s size the targeted file segment size in kilobytes default 256 n of files The number of segments kept on the system default 4 f file The file to rotate default var log messages EXAMPLES To start zlogrotate with the default values zlogrotate Eth...

Page 231: ...zre12 To clear the current mirroring use the t option The e option can be used to indicate that packets being sent on a given port should be copied to the to port For example if the e option is used as follows the packets transmitted as opposed to received on ports 1 2 or 3 would be mirrored to port 12 zmirror e zre1 zre2 zre3 zre12 The to port can also be the keyword cpu to indicate that packets ...

Page 232: ...ort mirroring for the specified from port t Teardown or disable the mirroring WILDCARDS Wildcard characters can be included to simplify the process of creating larger more complex configurations Wild card characters for zconfig include comma Use for creating lists dot dot Specifies an inclusive range Below are some examples for the correct usage of the comma and dot dot Each line below produces th...

Page 233: ...recting a problem file in the read write file system The t option can be used to save the configuration of a switch to a tar file A tar file can be copied to another switch and saved with zsync t As a result the configuration of a switch may be cloned to other switches The c option is used to mount the custom overlay See zsync for a description of custom verses dynamic overlay OPTIONS c Read saved...

Page 234: ...w be saved on a different host as a snapshot of the overlay at that point in time Use zsync to restore the overlay on the switch zsync t overlay tar The restored overlay will be used upon the next reboot SEE ALSO zsync Ethernet Switch Blade User s Guide release 3 2 2j page 234 Downloaded from www Manualslib com manuals search engine ...

Page 235: ... Local information can also be read as confirmation and for debugging purposes zpeer is part of the HA software suite It is called as part of the scripts that are generated by the zspconfig application With the exception of querying information for debugging and validation the zpeer application would not need to be executed by the user Following is a quick overview of the values communicated betwe...

Page 236: ...d for debugging Here is example output from the a option Local Write Peer Read priority 203 231 state master backup data 2 cb 2 e7 position byte bit 2 8 2 0 status 50 ACK 0 The priority and state rows are the same values returned by the query command The information in the data position and status rows are internal debugging information that is useful to support engineers when diagnosing problems ...

Page 237: ...be also reset SEE ALSO zspconfig Ethernet Switch Blade User s Guide release 3 2 2j page 237 Downloaded from www Manualslib com manuals search engine ...

Page 238: ...nd filters and sends them to a hardware specific daemon ztmd ztmd should be started before zqosd Both programs normally run as background processes OPTIONS d level Set the level of diagnostic information logged level may be 0 4 higher levels produce more output p port Use port as the multicast listening port for communication with ztmd Default is 2345 f Run zqosd in the foreground Without this opt...

Page 239: ...SEE ALSO ztmd tc 8 zfilterd Ethernet Switch Blade User s Guide release 3 2 2j page 239 Downloaded from www Manualslib com manuals search engine ...

Page 240: ...t packets m Enable rate control for Multicast packets d Enable rate control for DLF packets t Teardown or disable all rate control a Display the current rate control settings p port Enable rate control on this port T timeout Set time period to timeout milliseconds Default is 1000 one second D level Set debugging output to level when running the program rate_limit The number of packets per time per...

Page 241: ...rchitect switch as would be the case when zreg is running on the embedded processor the PPA would be 0 The default PPA is 0 w Causes zreg to write to the register or table Data to be written is read from standard input i index Causes zreg to access at the indexed register specified by reg See OPERANDS for usage of reg with indexed registers The index parameter is used to determine which entry i t ...

Page 242: ...ng the CONFIG Register zreg 1 When running zreg on the embedded processor of the OpenArchitect switch the ppa is always 0 since the embedded CPU processor only controls the directly attached switch chip To write a value to a register the w flag is used and the data is read from standard input The following example writes 0x10003c to the Aging Time Register echo 0x10003c zreg i 0 131 w p 0 echo 0x1...

Page 243: ...arts a background task that listens on the default port 7000 for incoming TCP requests and passes along the request to the OA HA application zrld Once started you can issue supported commands to the host running zrld from a remote host For example if the host running zrld had an IP address of 10 0 0 43 you could use zlc to remotely query the status of ports 1 through 5 Remember the IP address of t...

Page 244: ...y in the MARL The key to each MARL entry is a source Ethernet multicast address combined with a VLAN ID Two port bitmaps are maintained one that identifies the untagged members of the VLAN and one which identifies which ports of the VLAN have listening hosts attached When the maximum number of entries in the MARL is reached zsnoopd deletes a random entry prior to adding the next entry Traffic from...

Page 245: ...efault is to enable zsnoopd on all VLANs This option may be entered more than once EXAMPLES In the following example zsnoopd starts a background task that monitors incoming IGMP packets and updates the Multicast Table MARL accordingly This background task continues throughout the life of the Layer 2 network zsnoopd Once you run zsnoopd use zmarl to display the contents of the MARL zsnoopd deletes ...

Page 246: ...s run zspconfig with the u option The v option prints the current version of zspconfig and performs no actions OPTIONS d level Set the debug level The default debug level is 1 The higher the level the more debugging output is produced Debugging output is sent to the console p directory_path Set the directory path for where zspconfig places the scripts it generates The default location is etc rcZ d...

Page 247: ...hp0 vlan1 zre1 4 zconfig zhp1 vlan2 zre5 8 zconfig zhp2 vlan100 zre14 In the above example three VLANs are created zhp0 and zhp1 will be used as connections to high availability nodes zhp2 will be used as the inter connect between two Surviving Partner switches to run the VRRP heartbeat All VLANs must be created before other zspconfig commands may operate on them The next section of a zspconfig co...

Page 248: ...rent Master switch and the netmask must be the same as that provided in the sibling_addresses statement The last required section for the configuration is description of the ports Particularly we need to specify one of the following for all of the ports participating in the high availability setup The possible port types are interconnect Ports connected between groups of Surviving Partner switches...

Page 249: ...hp In such cases configuring the zhps as different port types would cause a conflict and will not work To handle this setup the individual zre commands would be used to setup the port types Here is an example of setting up the port types as a continuation of our current configuration interconnect zhp2 Could also use zre14 rain link zhp0 zhp1 Could also use zhp0 1 or list the zres The wild card is ...

Page 250: ...config uses a default MAC address derived from the physical address of the switch on which it is running For the slave switch the vrrp_virtual_mac_addr command is used to set the MAC address to the same as the Master This statement is typically not used within the Master switch s configuration It is used in the zspconfig generated Slave switch configuration And is retrieved by the Slave switch wit...

Page 251: ...e delays in the Surviving Partner failover To protect against this write the script to launch a second script in a background shell The advantage to calling the user provided script in the same process thread is that it gives synchronized control over the failover process for those who want it OUTPUT FILES The output of zspconfig is a set of configuration and script files The configuration files c...

Page 252: ...and then dhclient is used to retrieve a zspconfig configuration file from the tftpboot area of the Master switch etc rcZ d surviving_partner vrrpd script Runtime script that executes each time the vrrpd changes state This script starts and stops dhcpd and toggles down bonding driver rain link ports to force the nodes to a new Master switch etc rcZ d surviving_partner zlmd script Runtime script exe...

Page 253: ...e By default zstack configures stacking on the local OpenArchitect switch This option should only be used for displaying the configuration if at all d level Sets the level of debugging output produced by zstack The default level is 1 Setting the debug level higher produces more output The maximum output level is currently four 4 a Displays the current stacking configuration of the switch t Tears d...

Page 254: ...ntly only local CPU control is supported Stack creation example for a Ethernet Switch Blade stack0 ppa0 local stack1 ppa1 local The above statements indicate that there are two switch fabric chips that are controlled by the local CPU Stack Port Association After stack creation the physical ports must be associated with a virtual port name One might think of this as mapping the ports from their phy...

Page 255: ...oup of stacked ports The syntax is as follows stack N stack M zre n The above syntax indicates that stack N should use zre n to access stack M The zre value n is a physical port number as seen by Stack N It is not a virtual port number as mapped by a port association command Multiple configuration statements for Stack N can be used to indicate how to get to other stacks NOTE stack M can be a list ...

Page 256: ...7 zstack stack0 stack1 trunk0 zstack stack1 stack0 trunk0 zstack enable WILDCARDS Wild card characters can be included to simplify the process of creating larger more complex configurations Wild card characters for zconfig include comma Use for creating lists dot dot Specifies an inclusive range Below are some examples for the correct usage of the comma and dot dot Each line below produces the sam...

Page 257: ...zre lists Example of stack0 3 representing stacks 0 1 2 and 3 SEE ALSO zconfig Ethernet Switch Blade User s Guide release 3 2 2j page 257 Downloaded from www Manualslib com manuals search engine ...

Page 258: ...m port MIB statistics for specified port v vlan id MIB statistics for specified vlan id i unit Information for specified unit 0 is BCM56504 ports 0 23 48 49 1 is BCM56504 ports 24 47 50 51 d level Set debug level to level t tgid MAC layer statistics for all ports in trunk tgid v Vital Product Data not currently supported in Ethernet Switch Blade EXAMPLES To display statistics for a particular port...

Page 259: ...directory to save your changes and reboot There are two overlay areas dynamic and custom The dynamic overlay is where the switch s current configuration is stored It will boot with a simple reboot command The custom overlay is where the customization to the standard software is stored It is used to create new customer specific default configurations that differ from the generic configuration The i...

Page 260: ...mnt l List files that would be written Do not flash EXAMPLES To zsync only the hosts file cd etc zsync hosts If you previously created a snapshot of an overlay to a tar file using zmnt zmnt t overlay tar You can use zsync to restore the overlay on the switch directly from the tar file zsync t overlay tar The restored overlay will be loaded upon the next reboot FILES etc exclude zsync SEE ALSO zmnt...

Page 261: ...her levels produce more output p port Use port as the multicast listening port for communication with ztmd Default is 2345 f Run ztmd in the foreground Without this option it is run as a daemon i pid Set the PID for this process default is 1 o pid Set expected client PID a addr Bind multicast socket to addr l Log diagnostic output to var log ztmd log EXAMPLES Start the traffic management daemon zt...

Page 262: ...SEE ALSO zqosd iptables 8 tc 8 zfilterd Ethernet Switch Blade User s Guide release 3 2 2j page 262 Downloaded from www Manualslib com manuals search engine ...

Page 263: ...This protocol is used for finding the shortest path between two networks as well as eliminating loops from the topology Bridges communicate with each other by sending and receiving Bridge Protocol Data Units BPDUs brctl 8 can be used for configuring certain spanning tree protocol parameters For an explanation of these parameters see the IEEE 802 1d specification for detailed information OPTIONS sh...

Page 264: ...ime to time seconds setmaxage bridge time sets the bridge s maximum message age to time seconds setpathcost bridge zre cost sets the port cost of the port zre to cost This is a dimensionless metric The path cost is set to 100 for all OpenArchitect switch ports by default For the OpenArchitect switch a port is zre1 zre2 IEEE 802 d recommends the following setportprio bridge zre priority sets the po...

Page 265: ...SEE ALSO zconfig zl2d Ethernet Switch Blade User s Guide release 3 2 2j page 265 Downloaded from www Manualslib com manuals search engine ...

Page 266: ...tup any combination of Layer 2 and Layer 3 switching configurations with VLAN support Running the zconfig command causes network interfaces to be presented to the Linux operating system These interfaces can be setup for Layer 2 bridging functions such as Spanning Tree Protocol or Layer 3 routing through the Linux operating system zl2d is run as a daemon to monitor the Linux operating system bridgi...

Page 267: ...as follows d level Set the debug level The default debug level is 1 The higher the level the more debugging output is produced Debugging output is sent to the controlling tty This debugging output is from vrrpconfig To set the debug level of vrrpd one would use the vrrpd debug level setting option placed after the in the vrrpconfig command line a Display in a user readable format information about...

Page 268: ...hod that changes the priority to 99 for the Virtual Router associated with the Virtual Router Identifier 1 vrrpconfig v 1 p 99 SEE ALSO vrrpd Ethernet Switch Blade User s Guide release 3 2 2j page 268 Downloaded from www Manualslib com manuals search engine ...

Page 269: ...rwarding responsibility should the Master become unavailable This allows any of the virtual router IP addresses on the LAN to be used as the default first hop router by end hosts The advantage gained from using VRRP is a higher availability default path without requiring configuration of dynamic routing or router discovery protocols on every end host OPTIONS The following options are supported by ...

Page 270: ... The contents of the conf file are lines of command line options Each line represents a Virtual Router Parameters given on the command line apply to all Virtual Routers defined by the conf file So for example if the command line reads vrrpd d 50 c vrrpd conf And the vrrpd conf file contains v 1 i zhp0 I zhp3 10 0 0 42 v 2 i zhp1 I zhp3 11 0 0 42 vrrpd would be started controlling two Virtual Route...

Page 271: ...address of the interface Using the n option is not recommended D level Set debugging output to the supplied level ipaddr the ip address es of the virtual server SEE ALSO vrrpconfig Ethernet Switch Blade User s Guide release 3 2 2j page 271 Downloaded from www Manualslib com manuals search engine ...

Page 272: ...ary OpenArchitect image d 2 Loads an image located at offset 0 in the application flash 2 This is the factory shipped location for the alternate OpenArchitect image Any characters after the d dev parameters are saved in flash memory and passed unchanged to the booting kernel OPTIONS a Displays the current boot string The default factory shipping string is dev1 d dev Specifies the ROM device from w...

Page 273: ...es the i option to the booting kernel This is useful when recovering from a mistake saved to the read write file system or after updating the application flash 1 and doing the first boot The i option prevents the read write file system from overwriting the initial RAM disk image zbootcfg d 1 i SEE ALSO zflash reboot 8 Ethernet Switch Blade User s Guide release 3 2 2j page 273 Downloaded from www M...

Page 274: ... is an integer between 0 and 9999 The value of N is not required to be the same as any of the port s that are its members The range 0 4999 is reserved for network interfaces created by users The range 5000 9999 is reserved for network interfaces created by switch applications A trunk uses the format zrlK where K is an integer between 0 and 31 though only 24 ports actually may be used on the base b...

Page 275: ... tag mode Global Statement Syntax Double VLAN tag mode is set and removed on a global basis with the following syntax dvlan 0x8100 0x9100 or other unused ethertype dvlan teardown The first option sets double vlan tag mode on all ports and establishes the outer tag id The second tears down double vlan tag mode Trunk Interface Statements A trunk interface statement begins with the trunk name followe...

Page 276: ...iteria for determining the transmit port of the trunk Specifying both source and destination for a given layer is the same as specifying that layer itself that is zrl0 ip source_address ip destination_address is the same as zrl0 ip NOTE The base switch supports destination_address and or source_address for MAC and IP It cannot combine MAC and IP settings nor does it support port settings Examples ...

Page 277: ...etween 0 31 If the network interface and VLAN group already exist the specified ports or trunks are added to the network interface and VLAN group teardown Deletes the network interface and the associated VLAN group zre_list multicast mac_address Register the multicast mac_address on the zre_list ports associated with the given VLAN multicast_clear Clear all registered multicast address on all the ...

Page 278: ...st of such names followed by an equal sign and then the action Port interface actions may include SYNTAX zconfig zre_list untag n untag N Packets sent from this port or trunk for VLAN N are transmitted without a VLAN tag The port or trunk specified must have previously been included in the VLAN group with VID N zconfig zre_list multicast forward_type forward_type Set the ports specified to act as ...

Page 279: ...DS Wild card characters can be included to simplify the process of creating larger more complex configurations Wild card characters for zconfig include comma Use for creating lists dot dot Specifies an inclusive range plus Specifies auto incrementing Below are some examples for the correct usage of the comma and dot dot Each line below produces the same results zhp0 vlan1 zre1 zre2 zre3 zre4 zhp0 ...

Page 280: ... and so on The second statement configures all ports as untagged in their respective VLANs zhp0 13 vlan1 14 zre1 zre1 13 untag1 This is equivalent to zhp0 vlan1 zre1 zhp1 vlan2 zre2 zhp2 vlan3 zre3 zhp13 vlan14 zre14 zre1 untag1 zre2 untag2 zre3 untag3 zre14 untag14 The previous configuration can be used for creating a 14 port Layer 3 switch with each port assigned to its own VLAN In the next exam...

Page 281: ...tion can be used for creating a 14 port Layer 2 switch all 14 ports assigned to the same VLAN SEE ALSO zl3d Ethernet Switch Blade User s Guide release 3 2 2j page 281 Downloaded from www Manualslib com manuals search engine ...

Page 282: ...d The OpenArchitect switch supports up to eight class of service queues for packets to be sent out each of the Ethernet ports or forwarded to the CPU Normally packets are placed in these queues based on their 802 1p priority for tagged packets or the default priority for the port on which they arrive The queue destination for each priority is determined by a map A separate map is used for each ing...

Page 283: ...This option assigns a default priority for untagged packets arriving on each port in the port list The default priority ranges from 0 lowest to 7 highest m q0 q7 port list Specifies the priority to COS queue map The first parameter maps priority 0 to queue q0 second maps priority 1 to queue q1 etc the queues are numbered 0 to 7 The port list identifies which ingress ports will use this map If no p...

Page 284: ... configurable number of packets are scheduled from each queue before moving on to the next DRR Deficit Round Robin packets are scheduled from a backlogged queue until the configured number of bytes for that queue have been sent w queue weight list port list Provides the weights for WRR and DRR scheduling For WRR the weights are the number of packets scaled such that all weights are between 1 and 1...

Page 285: ...eived on all ports zcos m 0 1 2 3 4 5 6 7 3 To set up weighted round robin scheduling on ports zre10 to zre14 and the CPU with a weight of 2 for queue 0 3 for queue 1 and 1 for all other queues zcos k WRR w 1 3 1 1 1 1 1 1 zre10 14 cpu 4 To limit the rate of packets sent to the CPU to 15 Megabits sec with bursts of no more than 20 000 bytes zcos g 15000 20 cpu 5 To guarantee CPU cos queue 5 500 kb...

Page 286: ...beats of the software component before the base switch should be rebooted If either the interval or number of heartbeats is 0 the software component is off The h option is used to toggle on and off the hardware component of the watchdog timer The hardware component is off by default Once the software component of the watchdog timer is turned on a heartbeat must be sent with the b option within tha...

Page 287: ...the system OPTIONS d set debug level to level h Toggle use of the hardware watchdog timer Off by default i Time interval in milliseconds between zdog to driver heartbeats n Number of missed heartbeats before system reboot b Send a single heartbeat to the driver a Display current configuration Ethernet Switch Blade User s Guide release 3 2 2j page 287 Downloaded from www Manualslib com manuals sear...

Page 288: ... iptables or zirule utilities may be queried to see which rules if any are using FFP counters OPTIONS h hostname Specifies the hostname to query clear By default zffpcounter uses the local OpenArchitect switch p ppa Specifies the Physical Point of Attachment PPA on which to query clear By default zffpcounter uses the value 0 c Specifies that zffpcounter should clear the specified counter s rather ...

Page 289: ...er 0 59602801 Counter 1 83360091 Counter 2 83361262 Counter 29 83074779 Counter 30 81723249 Counter 31 71007391 The next example clears all FFP counter values zffpcounter P c Now using zffpcounter to display zffpcounter Counter 0 0 Counter 1 0 Counter 2 0 Counter 29 0 Ethernet Switch Blade User s Guide release 3 2 2j page 289 Downloaded from www Manualslib com manuals search engine ...

Page 290: ...ilterd to move the rule entered with iptables 8 down into the switching silicon zfilterd Counter 1 will now increment as traffic is sent to the switch from host 10 0 0 11 zffpcounter Counter 0 0 Counter 1 98 Counter 2 0 The next example queries ports 2 7 15 and 19 21 zffpcounter P 1 4 15 19 21 Counter 1 98 Counter 2 0 Counter 3 0 Counter 4 0 Counter 15 0 Ethernet Switch Blade User s Guide release ...

Page 291: ...Counter 19 0 Counter 20 0 Counter 21 0 SEE ALSO zirule iptables 8 Ethernet Switch Blade User s Guide release 3 2 2j page 291 Downloaded from www Manualslib com manuals search engine ...

Page 292: ...d actions OPTIONS d level Sets the level of debugging output required by zconfig The default level is one 1 Setting the debug level higher produces more output Four 4 is currently the maximum output level p port Set the multicast port to which messages will be sent f Run zfilterd in the foreground by default it runs in the background l Log all diagnostic output to var log zfilterd log I pid Set ou...

Page 293: ...ding to the boot ROM application flash 1 or application flash 2 respectively i upgradeipmi img will load the file upgradeipmi img into the IPMI controller flash memory This updates the program version it does not affect the FRU data Progress indicators will be printed during the update It may take four minutes to flash Once the update is complete the IPMI controller is rebooted which may cause the...

Page 294: ... command as an error can render your switch inoperable Do not interrupt this process until complete SEE ALSO zbootcfg Ethernet Switch Blade User s Guide release 3 2 2j page 294 Downloaded from www Manualslib com manuals search engine ...

Page 295: ... ID Two port bitmaps are maintained one that identifies the untagged members of the VLAN and one which identifies which ports of the VLAN have listening hosts attached NOTE OpenArchitect does not tag BPDU packets This means that if a port belongs to multiple VLANs exactly which Multicast MAC VLAN entry to create modify or delete cannot be determined GMRP should not be used when ports belong to mul...

Page 296: ...r a zhp or bzhp interface There is no default A target must be specified EXAMPLES In the following example zgmrpd starts a background task that enables the GMRP protocol for the ports in the zhp0 interface zgmrpd receives and sends GMRP packets and updates the Multicast Table MARL accordingly This background task continues throughout the life of the Layer 2 network or until manually terminated zgm...

Page 297: ... P port h host_name d level zl3net i index m mac_address a v vlan_id P port h host_name d level zvlan i index m mac_address a v vlan_id h host_name d level DESCRIPTION The generic table display functions produce formatted output of the abstraction API s tables for display on the user console The format of the output is table dependent Port mapping affects the ports referenced in the generic tables...

Page 298: ...ave a PORT ID field Cannot be combined with i m or v h host_name Specifies which hostname to connect By default zgr connects to the locally connected OpenArchitect switch that is the one that is on the local PCI bus d level Sets the level of debugging output required by zgr The default level is one 1 Setting the debug level higher produces more output Four 4 is currently the maximum output level E...

Page 299: ...he c option does not ask The following command deletes all entries in the zl2 table zl2 c SEE ALSO zal Ethernet Switch Blade User s Guide release 3 2 2j page 299 Downloaded from www Manualslib com manuals search engine ...

Page 300: ...d creates it If zgvrpd deletes the last port from a dynamically created VLAN it also deletes the VLAN When a VLAN is dynamically created a corresponding zhpN interface is also created where N is an integer between 5000 and 9999 The value of N is equal to 5000 plus the VLAN identification number VID For example if zgvrpd creates VLAN 5 it also creates a zhp5005 zgvrpd learns the existing static VLA...

Page 301: ...arget must be specified EXAMPLES In the following example zgvrpd starts a background task that enables the GVRP protocol for the ports in the zhp0 interface zgvrpd receives and sends GVRP packets and updates the VLAN configuration accordingly This background task continues throughout the life of the Layer 2 network or until manually terminated zgvrpd t zhp0 Once you run zgvrpd use zconfig a to dis...

Page 302: ...rts or stops the zl2d daemon t msec Cause zl2d to monitor the Spanning Tree state of each port on each bridge every msec milliseconds If unspecified the default is 500 milliseconds f Enables Fast Forward on bridge s using 0x4000 16384 as the dynamic root priority d level Sets the level of debugging output required by zl2d The default level is one 1 Setting the debug level higher produces more outp...

Page 303: ...h includes all of the zre n devices previously associated with the zhp0 device zl2d then starts a background task that monitors the port information of the Linux bridge every 500 ms and updates the Spanning Tree state fields in the hardware when necessary zl2d t 500 zhp0 Once you run zl2d use brctl 8 to display and alter your Spanning Tree settings SEE ALSO zconfig brctl 8 Ethernet Switch Blade Us...

Page 304: ...rly network route entries are removed when the corresponding Linux FIB table entry is deleted OPTIONS h hostname Specifies which host to monitor By default zl3d monitors the OpenArchitect switch that is locally connected i e the one that is on the local PCI bus t msec Sets the timeout value By default zl3d wakes up every 15 seconds 15000 ms to look for updates to the Linux routing tables and to do...

Page 305: ... the entry into the switch host route table If an entry in the Linux FIB table is a host entry and zl3d is able to resolve the MAC address of the destination host then the entry is inserted into the switch host route table If an entry from the FIB table is a gateway entry is not local and zl3d is able to resolve the MAC address of the gateway then the entry is inserted into the switch network rout...

Page 306: ...rt_list Port or list of ports on which to take action Port lists are supplied in zconfig syntax e g zre1 zre2 4 etc action Set link speed or state to up down auto 1000fd 1000hd 100fd 100hd 10fd or 10hd The interface must be down to change the port speed Set intfault or extfault Must supply option Use query to return present settings on off Turn on or off the specified LED Only valid for actions in...

Page 307: ...own or interfaces are configured If set to other the LED resumes its normal operation The next example globally turns on the Pull extract LED zlc extract on Additional capabilities are also available by supplying an additional led action zlc led_name on The led_name LED is turned on The LED will not change when links go up or down or interfaces are configured If other is used the LED resumes its n...

Page 308: ...nd the zlmd process d level Set debug level to level f configuration_file configuration Read configuration from file If file is a configuration is read from stdin Without the f option a single line of input can precede the last flag i e Configuration CONFIGURATION SYNTAX zlmd takes configuration data from standard input or from a file with the f option In either case the configuration syntax is th...

Page 309: ...xtraction 1 insertion 2 NOTE The ppa parameter is undefined and should be ignored EXAMPLES In the following example zlmd monitors ports 1 through 4 and runs a script called prt_change upon a link change event zlmd zre1 4 usr sbin prt_change Suppose port 2 were UP and you disconnected the cable zlmd would call prt_change with the following parameters usr sbin prt_change 0 2 0 1 where 0 is the ppa 2...

Page 310: ...cS by default with no parameters OPTIONS b Do not background the process i e run in foreground t time the time between logfile checks in seconds default 60 s size the targeted file segment size in kilobytes default 256 n of files The number of segments kept on the system default 4 f file The file to rotate default var log messages EXAMPLES To start zlogrotate with the default values zlogrotate Eth...

Page 311: ... current mirroring use the t option The e option can be used to indicate that packets being sent on a given port should be copied to the to port For example if the e option is used as follows the packets transmitted as opposed to received on ports 1 2 or 3 would be mirrored to port 12 zmirror e zre1 zre2 zre3 zre12 The to port can also be the keyword cpu to indicate that packets should be forwarde...

Page 312: ...s mirroring from port 0 to port 1and from port 2 and 3 to port 18 zmirror zre0 zre1 zmirror zre2 zre12 zmirror zre3 zre18 The to port of 12 was over written with the to port 18 Use zmirror a to query the hardware to display the current configuration zmirror a OPTIONS a Display the current mirroring setup e Set egress port mirroring for the specified from port t Teardown or disable the mirroring WI...

Page 313: ...xamples for the correct usage of the comma and dot dot Each line below produces the same results zre1 zre2 zre3 zre4 zre1 4 zre1 zre2 4 zre1 2 zre3 4 SEE ALSO tcpdump 1M Ethernet Switch Blade User s Guide release 3 2 2j page 313 Downloaded from www Manualslib com manuals search engine ...

Page 314: ...le system The t option can be used to save the configuration of a switch to a tar file A tar file can be copied to another switch and saved with zsync t As a result the configuration of a switch may be cloned to other switches The c option is used to mount the custom overlay See zsync for a description of custom verses dynamic overlay OPTIONS c Read saved files from the custom overlay t file Save ...

Page 315: ...ot of the overlay at that point in time Use zsync to restore the overlay on the switch zsync t overlay tar The restored overlay will be used upon the next reboot SEE ALSO zsync Ethernet Switch Blade User s Guide release 3 2 2j page 315 Downloaded from www Manualslib com manuals search engine ...

Page 316: ... Local information can also be read as confirmation and for debugging purposes zpeer is part of the HA software suite It is called as part of the scripts that are generated by the zspconfig application With the exception of querying information for debugging and validation the zpeer application would not need to be executed by the user Following is a quick overview of the values communicated betwe...

Page 317: ...d for debugging Here is example output from the a option Local Write Peer Read priority 203 231 state master backup data 2 cb 2 e7 position byte bit 2 8 2 0 status 50 ACK 0 The priority and state rows are the same values returned by the query command The information in the data position and status rows are internal debugging information that is useful to support engineers when diagnosing problems ...

Page 318: ...be also reset SEE ALSO zspconfig Ethernet Switch Blade User s Guide release 3 2 2j page 318 Downloaded from www Manualslib com manuals search engine ...

Page 319: ...nd filters and sends them to a hardware specific daemon ztmd ztmd should be started before zqosd Both programs normally run as background processes OPTIONS d level Set the level of diagnostic information logged level may be 0 4 higher levels produce more output p port Use port as the multicast listening port for communication with ztmd Default is 2345 f Run zqosd in the foreground Without this opt...

Page 320: ...SEE ALSO ztmd tc 8 zfilterd Ethernet Switch Blade User s Guide release 3 2 2j page 320 Downloaded from www Manualslib com manuals search engine ...

Page 321: ... for DLF packets t Teardown or disable all rate control a Display the current rate control settings p port Enable rate control on this port v vlan Enable rate control for this vlan_id g group Enable rate control for this Multicast group M mac_addr Enable rate control for this Mac mac_addr T timeout Set time period to timeout milliseconds Default is 1000 one second D level Set debugging output to l...

Page 322: ...case when zreg is running on the embedded processor the PPA would be 0 The default PPA is 0 w Causes zreg to write to the register or table Data to be written is read from standard input i index Causes zreg to access at the indexed register specified by reg See OPERANDS for usage of reg with indexed registers The index parameter is used to determine which entry i t index Causes zreg to access the ...

Page 323: ...addressable memory register access is the default The following is an example of reading the CONFIG Register zreg 1 When running zreg on the embedded processor of the OpenArchitect switch the ppa is always 0 since the embedded CPU processor only controls the directly attached switch chip Since the default ppa is 0 the p option is not needed To write a value to a register the w flag is used and the...

Page 324: ...arts a background task that listens on the default port 7000 for incoming TCP requests and passes along the request to the OA HA application zrld Once started you can issue supported commands to the host running zrld from a remote host For example if the host running zrld had an IP address of 10 0 0 42 you could use zlc to remotely query the status of ports 1 through 5 Remember the IP address of t...

Page 325: ...ry is a source Ethernet multicast address combined with a VLAN ID Two port bitmaps are maintained one that identifies the untagged members of the VLAN and one which identifies which ports of the VLAN have listening hosts attached When the maximum number of entries in the table is reached zsnoopd deletes a random entry prior to adding the next entry The Ethernet Switch Blade does not perform Multic...

Page 326: ...efault is to enable zsnoopd on all VLANs This option may be entered more than once EXAMPLES In the following example zsnoopd starts a background task that monitors incoming IGMP packets and updates the Multicast Table MARL accordingly This background task continues throughout the life of the Layer 2 network zsnoopd Once you run zsnoopd use zmarl to display the contents of the MARL zsnoopd deletes ...

Page 327: ... in the data position and status rows are internal debugging information that is useful to support engineers when diagnosing problems in the field The r option should not be used while HA is running It can cause loss of coordination between the two switch planes The r option will reset all internal communication values and possibly require the peer to be reset also OPTIONS d set debug level to lev...

Page 328: ...option The v option prints the current version of zspconfig and performs no actions OPTIONS d level Set the debug level The default debug level is 1 The higher the level the more debugging output is produced Debugging output is sent to the console p directory_path Set the directory path for where zspconfig places the scripts it generates The default location is etc rcZ d surviving_partner u dhcp_i...

Page 329: ...p1 vlan2 zre5 8 zconfig zhp2 vlan100 zre14 In the above example three VLANs are created zhp0 and zhp1 will be used as connections to high availability nodes zhp2 will be used as the inter connect between two Surviving Partner switches to run the VRRP heartbeat All VLANs must be created before other zspconfig commands may operate on them The next section of a zspconfig configuration file sets up th...

Page 330: ...the netmask must be the same as that provided in the sibling_addresses statement The last required section for the configuration is description of the ports Particularly we need to specify one of the following for all of the ports participating in the high availability setup The possible port types are interconnect Ports connected between groups of Surviving Partner switches VRRP heartbeat message...

Page 331: ...zhp In such cases configuring the zhps as different port types would cause a conflict and will not work To handle this setup the individual zre commands would be used to setup the port types Here is an example of setting up the port types as a continuation of our current configuration interconnect zhp2 Could also use zre14 RAINlink zhp0 zhp1 Could also use zhp0 1 or list the zres The wild card is ...

Page 332: ...config uses a default MAC address derived from the physical address of the switch on which it is running For the slave switch the vrrp_virtual_mac_addr command is used to set the MAC address to the same as the Master This statement is typically not used within the Master switch s configuration It is used in the zspconfig generated Slave switch configuration And is retrieved by the Slave switch wit...

Page 333: ...mon use of the start_script command might be to propagate gated configurations to all members of the Surviving Partner group Absolute path names must be used Using multiple commands allows inclusion of multiple scripts For example start_script etc rcZ d S75gated start_script etc rcZ d S80static_routes The vrrpd_script command allows a user defined script to be run when vrrpd changes state This scr...

Page 334: ...d via DHCP by a replacement switch on boot up etc rcZ d surviving_partner dhcpd conf Configuration script used by dhcpd when the switch becomes master dhcpd is used to serve replacement switches their configuration scripts Namely a zsp_DC conf file that can be input to the zspconfig with the u flag etc rcZ d surviving_partner dhclient conf If zspconfig is executed with the u flag a dhclient conf f...

Page 335: ...Ethernet Switch Blade User s Guide release 3 2 2j page 335 Downloaded from www Manualslib com manuals search engine ...

Page 336: ...default zstack configures stacking on the local OpenArchitect switch This option should only be used for displaying the configuration if at all d level Sets the level of debugging output produced by zstack The default level is 1 Setting the debug level higher produces more output The maximum output level is currently four 4 a Displays the current stacking configuration of the switch t Tears down t...

Page 337: ... physical switch fabric chip the key word local is used in place of the IP address Currently only local CPU control is supported Stack creation example for a base switch stack0 ppa0 local stack1 ppa1 local The above statements indicate that there are two switch fabric chips that are controlled by the local CPU Stack Port Association After stack creation the physical ports must be associated with a...

Page 338: ...tack must be defined The stack configuration provides the network map of how inter switch fabric communication is performed It specifies which physical port or should be used to communicate with a different group of stacked ports The syntax is as follows stack N stack M zre n The above syntax indicates that stack N should use zre n to access stack M The zre value n is a physical port number as see...

Page 339: ... WILDCARDS Wild card characters can be included to simplify the process of creating larger more complex configurations Wild card characters for zconfig include comma Use for creating lists dot dot Specifies an inclusive range Below are some examples for the correct usage of the comma and dot dot Each line below produces the same results stack0 zre4 7 zre0 zre1 zre2 zre3 stack0 zre4 zre5 7 zre0 3 s...

Page 340: ...ted OPTIONS m port MIB statistics for specified port v vlan id MIB statistics for specified vlan id i unit Information for specified unit 0 is BCM5695 ports 0 11 1 is BCM5695 ports 12 23 d level Set debug level to level t tgid MAC layer statistics for all ports in trunk tgid v Vital Product Data not currently supported in base switch EXAMPLES To display statistics for a particular port on the swit...

Page 341: ...pted file that is saved to flash ROM with zsync first reboot with the i option see Switch Maintenance Use zmnt to put the corrupted file in the mnt directory open and correct the file then zsync to the mnt directory to save your changes and reboot There are two overlay areas dynamic and custom The dynamic overlay is the default The custom overlay is used to create base configurations that are diff...

Page 342: ...ust be created with zmnt l List files that would be written Do not flash EXAMPLES To zsync only the hosts file cd etc zsync hosts If you previously created a snapshot of an overlay to a tar file using zmnt zmnt t overlay tar You can use zsync to restore the overlay on the switch directly from the tar file zsync t overlay tar The restored overlay will be loaded upon the next reboot FILES etc exclud...

Page 343: ...r levels produce more output p port Use port as the multicast listening port for communication with ztmd Default is 2345 f Run ztmd in the foreground Without this option it is run as a daemon i pid Set the PID for this process default is 1 o pid Set expected client PID a addr Bind multicast socket to addr l Log diagnostic output to var log ztmd log EXAMPLES Start the traffic management daemon ztmd...

Page 344: ...SEE ALSO zqosd iptables 8 tc 8 zfilterd Ethernet Switch Blade User s Guide release 3 2 2j page 344 Downloaded from www Manualslib com manuals search engine ...

Page 345: ...ocol is used for finding the shortest path between two networks as well as eliminating loops from the topology Bridges communicate with each other by sending and receiving Bridge Protocol Data Units BPDUs brctl 8 can be used for configuring certain spanning tree protocol parameters For an explanation of these parameters see the IEEE 802 1d specification for detailed information OPTIONS addbr bridg...

Page 346: ...e garbage collection interval for the bridge to time seconds This means that the bridge will check the forwarding database for timed out entries every time seconds stp bridge state controls this bridge s participation in the Spanning Tree Protocol state can be off or on When turned off the bridge will not send or receive BPDUs and will thus not participate in the Spanning Tree Protocol CAUTION If ...

Page 347: ...ort s priority to priority The priority value is an unsigned 8 bit quantity a number between 0 and 255 and has no dimension This metric is used in the designated port and root port selection algorithms For the OpenArchitect switch a port is zre1 zre2 NOTES brctl 8 replaces the older brcfg tool SEE ALSO zconfig zl2d Ethernet Switch Blade User s Guide release 3 2 2j page 347 Link Speed Recommended V...

Page 348: ... information from the BMC I2 C Port 1 Connects to the Ethernet Switch Blade CPU and the spare SEEPROM I2 C Port 2 Connects to the boot and run time SEEPROMs as well as the switch silicon ISwitch ShMC Interaction Switch reports state changes to ShMC If event reporting is enabled an event will be generated by the switch whenever a sensor threshold is crossed Policy is enforced by the ShMC Typical Sh...

Page 349: ...ndatory BroadcastGetDeviceID 0x01 Mandatory ColdReset 0x02 Optional GetSelfTestResult 0x04 Mandatory GetSensorReading 0x2D Mandatory TempSensor 60 Returned in Celsius A2D_0 41 A2D_1 42 A2D_2 43 A2D_3 Not used A2D_4 45 A2D_5 Not used Full 8 bit value 255 represents 3 3 Volts scale returned value accordingly SetSlotPower 0x12 Vendor specific SetSlotBlueLed 0x13 Vendor specific SetSlotReset 0x15 Vend...

Page 350: ...aphical address is B2h to read the temperature sensor which is assigned to sensor number 60h Standard IPMI Command GetSensorReading Byte Data Field Description 1 rsAddr B2h 2 netFn Lun 10h 3 check1 3Eh 4 rqAddr 20h 5 seq no 06 random pick 6 command 2Dh 7 sensor number 60h 8 checksum2 4Dh Table C 3 GetSensorReading Ethernet Switch Blade User s Guide release 3 2 2j page 350 Downloaded from www Manua...

Page 351: ...ode 00h 8 sensor reading 1Bh 27 Celsius degree 9 optional data byte C0h scanning is enabled 10 optional data byte C0h 11 optional data byte 00 12 checksum2 80h Table C 4 GetSensorResonse Only scanning is supported and enabled for the optional bytes Ethernet Switch Blade User s Guide release 3 2 2j page 351 Downloaded from www Manualslib com manuals search engine ...

Page 352: ...le C 5 Standard IPMI Commands Structure of Standard IPMI Responses From PMC to BMC Structure of Standard IPMI Responses PMC BMC Byte Data Field Description 1 rqAddr sw_id 2 netFn Lun netFn 3 check1 chksm1 4 rsAddr slot s IPMB addr 5 seq no seq 6 command cmd 7 completion code ccode 8 optional data byte arg1 8 x optional data bytes argN 8 x 1 check2 chksm2 Table C 6 Standard IPMI Responses Ethernet ...

Page 353: ... IPMI Event Message Definitions The following tables describe the IPMI event messages to be generated by the PMC The basic requirement is that when a monitored sensor changes state an event must be generated and sent to BMC Field Replaceable Unit Inventory Device A Field Replaceable Unit Inventory Device FRU ID file is generated for the Ethernet Switch Blade in binary format At manufacturing the f...

Page 354: ...tate bus isolated 1 Local Control state IPM Controller determines state of bus 6 4 IPMB B Local Status 0 No Failure Bus enabled if no override in effect 1 Unable to drive clock HI 2 Unable to drive data HI 3 Unable to drive clock LO 4 Unable to drive data LO 5 Clock low time out 6 under test 7 Undiagnosed communications failure 3 IPMB A Override State 0 Override state bus isolated 1 Local Control ...

Page 355: ...ta 5 Clock low time out 6 under test 7 Undiagnosed communications failure Table C 9 IPMB Override Status Data Ethernet Switch Blade User s Guide release 3 2 2j page 355 Downloaded from www Manualslib com manuals search engine ...

Page 356: ...nt 67 125 Policy Enforcement Points 67 125 console cable Booting 86 144 Console Port 21 COPS 67 125 Default Route 71 130 dhclient 71 130 DHCP 40 DHCP Client 71 130 Server 71 130 dhcpd 72 130 Diffserv 68 126 flash 88 146 FTPD Server 74 133 gated 51 102 ifconfig 49 97 Layer 2 Switch 46 94 Layer 3 Switch 49 97 Using Multiple VLANs 100 LED Control 80 138 Link Event Monitoring 80 138 monit 168 247 Name...

Page 357: ...4 Scripts rcS 71 130 S20stack 44 92 S30e1000 92 S40vpd 92 S50layer2 44 92 S50layer2sp 92 S50layer3 44 50 92 98 S50multivlan 44 93 100 S55gatedOSPF 44 93 S55gatedRip1 44 51 93 102 S55gatedRip2 44 93 Scripts example 44 92 Scripts examples 44 92 snmp 75 133 applications 79 137 interface details 77 135 MIBS 75 133 traps 76 135 Software Development Kit 19 Spanning Tree Protocol 47 96 Switch Console 43 ...

Page 358: ...247 zfilterd 56 107 253 zflash 88 146 171 254 zgmrpd 256 zgr 258 zgvrpd 261 zl2179 258 zl2d 148 184 227 263p zl2mc 179 258 zl3d 49 98 102 148 227 266 zl3host 179 258 zl3net 179 258 zlc80 138 268 zlmd 80 138 270 zlogrotate 272 zmirror 79 137 273 zmnt 276 zmonitor 84 142 ZNYX H MIB 327 zqosd 62 278 zrc280 zreg 281 zrld 283 zrld_trusted_hosts 206 283 zsnoopd 284 zstack 294 zstats 298 zsync 299 7100 U...

Page 359: ...Index ztmd 301 zvlan 179 258 ZX4920 MIB 333 7100 User s Guide release 3 2 2j page 359 Downloaded from www Manualslib com manuals search engine ...

Reviews:

No comments

Related manuals for bh5700

D-Link DAP-1650 Quick Install Manual preview
DAP-1650
Brand: D-Link Pages: 16
D-Link DCH-G020 How-To preview
DCH-G020
Brand: D-Link Pages: 2
GALCO EX95000 Series Quick Start Manual preview
EX95000 Series
Brand: GALCO Pages: 22
IDEM SAFETY SWITCHES KLM-P2L Operating Instructions preview
KLM-P2L
Brand: IDEM SAFETY SWITCHES Pages: 2
Delta Electronics SK1027 Specifications preview
SK1027
Brand: Delta Electronics Pages: 1
Indu-Sol PROmesh P10 Quick Start User Manual preview
PROmesh P10
Brand: Indu-Sol Pages: 9
S+S Regeltechnik HYGRASREG KW Series Operating Instructions, Mounting & Installation preview
HYGRASREG KW Series
Brand: S+S Regeltechnik Pages: 16
GE Digital Energy STS-400-25-3 Installation And Operating Manual preview
Digital Energy STS-400-25-3
Brand: GE Pages: 49
Maiwe MISCOM7028GX Series User Manual preview
MISCOM7028GX Series
Brand: Maiwe Pages: 22
Kramer KIT-401 Quick Start Manual preview
KIT-401
Brand: Kramer Pages: 4
Intellinet 560641 Instructions Manual preview
560641
Brand: Intellinet Pages: 12
LevelOne GSW-1601TX User Manual preview
GSW-1601TX
Brand: LevelOne Pages: 40
BCXLAB LYNQ User Manual preview
LYNQ
Brand: BCXLAB Pages: 6
Dwyer Instruments CFS2 Series Installation And Operating Instructions preview
CFS2 Series
Brand: Dwyer Instruments Pages: 4
AVCOMM 608FX4 Quick Installation Manual preview
608FX4
Brand: AVCOMM Pages: 2
3onedata IES6100 Series Quick Installation Manual preview
IES6100 Series
Brand: 3onedata Pages: 4
Tekmar tekmarNet 4 User Switch 481 Data Brochure preview
tekmarNet 4 User Switch 481
Brand: Tekmar Pages: 12
Zamel stiro RWS-211D/N Manual preview
stiro RWS-211D/N
Brand: Zamel Pages: 11

Brands by name

Popular brands

Load more brands